Skip to content
alert-triangle

GitHub Action

blint-action

v1.0.0 Latest version

blint-action

alert-triangle

blint-action

Scan binaries for capabilities

Installation

Copy and paste the following snippet into your .yml file.

 
              
- name: blint-action

              
  uses: AppThreat/[email protected]
Learn more about this action in AppThreat/blint-action

Choose a version

BLint-action

blint logo

BLint is a Binary Linter to check the security properties, and capabilities in your executables. It is powered by lief.

Supported binary formats:

  • ELF (GNU, musl)
  • PE (exe, dll)
  • Mach-O (x64, arm64)

Inputs

reports_dir

Path to output reports. Defaults to workspace/reports.

src

Path(s) to images or image containing directories. Defaults to workspace.

Example usage

uses: appthreat/blint-action@latest
with:
  reports_dir: workspace/DesiredPath
  src: |
    MySourceDir
    MySourceImage

Reports

Blint-action produces the following json artifacts in the /workspace/reports directory:

  • blint-output.html - HTML output from the console logs
  • exename-metadata.json - Raw metadata about the parsed binary. Includes symbols, functions, and signature information
  • findings.json - Contains information from the security properties audit. Useful for CI/CD based integration
  • reviews.json - Contains information from the capability reviews. Useful for further analysis
  • fuzzables.json - Contains a suggested list of methods for fuzzing

References

Discord support

The developers can be reached via the discord channel.