Socket
Socket
Sign inDemoInstall

@soos-io/soos-scm-audit

Package Overview
Dependencies
Maintainers
1
Versions
7
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@soos-io/soos-scm-audit

SOOS SCM Audit CLI

Version published
Maintainers
1
Created
Source

SOOS

The SOOS SCM Audit script should be used to determine the number of contributing developers in your organization.

Requirements

  • npm

Installation

You may choose to install the package globally or locally, if you are unsure, you can find out more about installing globally on npm.

Globally

run npm i -g @soos-io/soos-scm-audit@latest

Locally

run npm install --prefix ./soos @soos-io/soos-scm-audit

Configure and Run the Script

NOTE: you can find values for the --apiKey and --clientId at app.soos.io.

For GitHub

  1. Generate a GitHub Public Access Token (PAT) for your organization and ensure that it has the full repo permission set. image

  2. Plug in the values for --apiKey, --clientId, --secret, and --organizationName and run the script.

When Installed Globally:

soos-scm-audit --apiKey=<API_KEY> --clientId=<CLIENT_ID> --scmType=GitHub --secret=<GITHUB_PAT> --organizationName="<GITHUB_ORG_NAME>"

When Installed Locally:

node ./soos/node_modules/@soos-io/soos-scm-audit/bin/index.js --apiKey=<API_KEY> --clientId=<CLIENT_ID> --scmType=GitHub --secret=<GITHUB_PAT> --organizationName="<GITHUB_ORG_NAME>"

For Bitbucket Cloud

  1. Generate an App Password for your organization and ensure that it has the Read Repositories permission set. image

  2. Plug in the values for --apiKey, --clientId, --secret, and --workspace, and --username and run the script.

When Installed Globally:

soos-scm-audit --apiKey=<API_KEY> --clientId=<CLIENT_ID> --scmType=BitbucketCloud --secret=<APP_PASSWORD> --workspace="<BITBUCKET_WORKSPACE>" --username="<BITBUCKET_USERNAME>"

When Installed Locally:

node ./soos/node_modules/@soos-io/soos-scm-audit/bin/index.js --apiKey=<API_KEY> --clientId=<CLIENT_ID> --scmType=BitbucketCloud --secret=<APP_PASSWORD> --workspace="<BITBUCKET_WORKSPACE>" --username="<BITBUCKET_USERNAME>"

Parameters

General ParametersDefaultDescription
--apiKeySOOS API Key - get yours from SOOS Integration. Uses SOOS_API_KEY env value if present.
--clientIdSOOS Client ID - get yours from SOOS Integration. Uses SOOS_API_CLIENT env value if present.
--logLevelMinimum level to show logs: DEBUG, INFO, WARN, FAIL, ERROR.
--saveResultsSave results to file.
--scmTypeScm Type to use for the audit. Options: GitHub, BitBucketCloud
--verbosefalseEnable verbose logging.
BitBucket Cloud ParametersDefaultDescription
--usernameUsername where the App password was generated for BitBucketCloud.
--secretSecret to use for API calls. It should be a App Password
--workspaceWorkspace name to run audit for BitBucketCloud.
GitHub ParametersDefaultDescription
--organizationNameOrganization name to run audit for GitHub.
--secretSecret to use for API calls. It should be a GPAT

FAQs

Package last updated on 04 Apr 2024

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Introducing the Socket Python SDK

Security News

Introducing the Socket Python SDK

The initial version of the Socket Python SDK is now on PyPI, enabling developers to more easily interact with the Socket REST API in Python projects.

By Douglas Coburn  -  Sep 13, 2024
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc