Used to retrieve security scan result information for CNB code repositories.

• Get code sensitive information statistics (high risk, medium risk, low risk)
• Get open source component vulnerability statistics (critical, high risk, medium risk, low risk)
• Display statistics grouped by author
• Output to both terminal and sec_overview.md file
• Support disabling specific functional modules through environment variables

main:
  "crontab: 0 9 * * *":   # Execute once daily at 9:00 AM
    - name: Scheduled repository security scan results
      stages:
        - name: Get scan results
          image: cnbcool/cnb-sechook
          settings:
            scanning_disabled: false
            sensitive_disabled: false
            max_display_authors: 5
        - name: Send results
          image: tencentcom/wecom-message
          settings:
            robot: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
            msgType: markdown
            fromFile: sec_overview.md

• max_display_authors: Maximum number of authors to display (optional, default is 5, must be a positive integer)
• sensitive_disabled: Disable sensitive information statistics (optional, disabled when set to true/TRUE/1)
• scanning_disabled: Disable code scanning statistics (optional, disabled when set to true/TRUE/1)