tmas-scan

Version updated for https://github.com/trendmicro/tmas-scan-action to version v3.1.0.

• This action is used across all versions by 5 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The TMAS Scan GitHub Action automates the scanning of artifacts, such as files, directories, or container images, for open-source vulnerabilities, malware, and sensitive secrets using the Trend Micro Artifact Scanner (TMAS). It helps developers enhance security by identifying potential risks in their codebase or build artifacts, providing detailed scan results in the action logs and summary reports as comments on related pull requests. This action streamlines security checks within CI/CD workflows, reducing the risk of security flaws in software delivery pipelines.

Release notes

The TMAS CLI download URL has changed from cli.artifactscan.cloudone.trendmicro.com to ast-cli.xdr.trendmicro.com. If your GitHub Enterprise runner uses network allowlists, you must add the new domain before upgrading. Please see Trend Micro firewall exception list for more detail.

• trendmicro
• GitHub Actions