你好 @0x727,
在自动化安全运营中,需要将ShuiZe集成到CI/CD流水线。建议增加纯命令行模式:
建议:增加--ci-mode参数
行为:
- 完全不输出Excel文件
- 禁用所有交互式提示
- 输出纯JSON/NDJSON/SARIF到stdout
- 退出码反映结果(0=无漏洞,1=发现漏洞)
使用示例:
# .github/workflows/shuize-recon.yml
name: Weekly Recon
on:
schedule:
- cron: '0 0 * * 0'
jobs:
recon:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- run: pip install -r requirements.txt
- run: python3 ShuiZe.py -d target.com --ci-mode --sarif > results.sarif
- uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: results.sarif额外提供:
- 官方GitHub Actions示例workflow
- GitLab CI示例
- Jenkins Pipeline示例
这样ShuiZe可以直接接入企业的DevSecOps流程。
[English Translation / 英文摘要]
Hi maintainers, this issue is a feature / architecture / security suggestion for 10_ShuiZe.
The Chinese text above contains the detailed proposal with technical context and implementation ideas.
In summary: we are requesting the enhancement described above and would be happy to provide PRs or further discussion in either Chinese or English.
Thank you for the excellent work on this project!
你好 @0x727,
在自动化安全运营中,需要将ShuiZe集成到CI/CD流水线。建议增加纯命令行模式:
建议:增加
--ci-mode参数行为:
使用示例:
额外提供:
这样ShuiZe可以直接接入企业的DevSecOps流程。
[English Translation / 英文摘要]
Hi maintainers, this issue is a feature / architecture / security suggestion for 10_ShuiZe.
The Chinese text above contains the detailed proposal with technical context and implementation ideas.
In summary: we are requesting the enhancement described above and would be happy to provide PRs or further discussion in either Chinese or English.
Thank you for the excellent work on this project!