repository
nctl scan repository
Scan Repository Command
Scan git repositories by validating them against custom policies.
nctl scan repository [flags]
Command Options
| Flags | Shorthand | Description |
|---|---|---|
--help |
-h |
help for help |
--output <string> |
-o |
choose the output format of scan result. Available options are: json, text,yaml and sarif with the default option being text |
--policies <strings> |
-p |
specify path to policy files (local path, github URL, helm URL) to scan against custom policies |
--policy-sets <string> |
scan against different policy sets in one command, use this flag to provide a comma-separated list of policy sets to scan the resources(pss-baseline, pss-restricted, rbac-best-practices) | |
--analyzers <strings> |
Analyzers to enable (all by default) (default [all]) | |
--debug |
Debug command | |
--file <string> |
Output file | |
--insecure |
allow connection to an address with a self-signed or non-verifiable certificate (not recommended) | |
--labels <strings> |
Report label | |
--publish |
Publish reports (default true) | |
--publish-token <string> |
scan reports publish token | |
--token <string> |
Nirmata API Login Key (env NIRMATA_TOKEN) | |
--url <string> |
Nirmata server base URL (env NIRMATA_URL) |