Scan all public repos of a GitHub org with SourceClear

README.md

Install

Requirements:

• Ruby, rubygems
• Octokit.rb installed
• SourceClear CLI agent installed
• Your GitHub access token available in your ENV as GITHUB_TOKEN

Run

• scan-org foo
• You'll see repo URLs being scanned in your terminal output
• Scan results will be in your SourceClear reports

scan-org

#!/usr/bin/env ruby
require 'octokit'

Octokit.auto_paginate = true
client = Octokit::Client.new(:access_token => ENV["GITHUB_TOKEN"])

org = ARGV[0]
unless org
  puts "Usage: scan-org orgname"
  exit
end

repos = client.repos org
puts "#{org}: Scanning #{repos.size} repositories..."
repos.each do |repo|
  url = repo.html_url
  puts "Scanning #{url}..."
  cmd = "srcclr scan --url #{url}"
  `#{cmd}`
end