AppThreat/blint-action

Action to run BLint, the binary linter.

BLint-action

BLint is a Binary Linter to check the security properties, and capabilities in your executables. It is powered by lief.

Supported binary formats:

• ELF (GNU, musl)
• PE (exe, dll)
• Mach-O (x64, arm64)

Inputs

reports_dir

Path to output reports. Defaults to workspace/reports.

src

Path(s) to images or image containing directories. Defaults to workspace.

Example usage

uses: appthreat/blint-action@latest
with:
  reports_dir: workspace/DesiredPath
  src: |
    MySourceDir
    MySourceImage

Reports

Blint-action produces the following json artifacts in the /workspace/reports directory:

• blint-output.html - HTML output from the console logs
• exename-metadata.json - Raw metadata about the parsed binary. Includes symbols, functions, and signature information
• findings.json - Contains information from the security properties audit. Useful for CI/CD based integration
• reviews.json - Contains information from the capability reviews. Useful for further analysis
• fuzzables.json - Contains a suggested list of methods for fuzzing

References

• lief examples
• checksec

Discord support

The developers can be reached via the discord channel.