cloud-code-assessment-action/action.yaml at main · serverless-guru/cloud-code-assessment-action · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
name: "Cloud Code Assessment - Licensed Scan"
description: "Run code assessment with Well-Architected pillars, gated by license."
author: "Serverless Guru"

inputs:
  license-json:
    description: "License JSON string"
    required: true
  license-api-url:
    description: "License verify API URL"
    required: false
    default: "https://pxh5w4zqf9.execute-api.eu-central-1.amazonaws.com/Prod/license/verify"
  pillar:
    description: "Well-Architected pillar to analyze"
    required: false
    default: "security"
  github-token:
    description: "GitHub token with issues:write (defaults to GITHUB_TOKEN)"
    required: false
  enable-ai-enrichment:
    description: "Enable AI-based enrichment of findings (uses OPENAI_API_KEY or other provider-specific creds)"
    required: false
    default: "false"
  ai-provider:
    description: "AI provider to use (currently only 'openai' is implemented in the action)"
    required: false
    default: "openai"
  ai-model:
    description: "Model name for the chosen AI provider (e.g. gpt-4o-mini or gpt-5.1)"
    required: false
    default: "gpt-5.1"

runs:
  using: docker
  image: docker://ghcr.io/serverless-guru/cloud-code-assessment:latest
  env:
    LICENSE_API_URL: ${{ inputs.license-api-url }}
  args:
    - --pillar
    - ${{ inputs.pillar }}