actions/report-vulns
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2 Commits 1 Branch 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
jake 43dc173c7f permission updates
2025-04-09 16:42:38 -04:00
action.yaml
[new] Code migration
2025-03-31 15:49:50 -04:00
README.md
[new] Code migration
2025-03-31 15:49:50 -04:00
security.sh
permission updates
2025-04-09 16:42:38 -04:00

README.md

report-vulns

A very simple action to check for vulnerabilities in projects during workflows

Usage

Use a tagged release to avoid unexpected changes that may come to the master branch

name: "security checkpoint"
uses: https://code.jakeyoungdev.com/actions/report-vulns@master
with:
  manager: npm
  panic: no

Inputs

Some inputs are supplied for better customization

Input Required Values Default Description
manager required go/npm . Package manager to use for scan
panic optional yes/no yes Determines whether or not the job fails when vulnerabilities are found

Requirements

Package managers like Go and Node must be installed before running this action

Managers

The default or "built-in" vulnerability scanner will be used for each package manager

Package Manager Vulnerability Scanner
npm npm audit
go govulncheck
Description
a simple github action to check for vulnerabilities within a repository
actionsgolangnpmsecurity
Readme 25 KiB
Languages
Shell 100%