Skip to content

Runs the Safety CLI dependency scanner against your project

Notifications You must be signed in to change notification settings

SafetyQuincyF/safety-action

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Using Safety as a GitHub Action

Safety can be integrated into your existing GitHub CI pipeline as an action. Just add the following as a step in your workflow YAML file after setting your SAFETY_API_KEY secret on GitHub under Settings -> Secrets -> Actions:

      - uses: pyupio/safety-action@v1
        with:
          api-key: ${{ secrets.SAFETY_API_KEY }}

(Don't have an API Key? You can sign up for one with https://safetycli.com/resources/plans.)

This will run Safety scan and It'll fail your CI pipeline if any vulnerable packages are found.

If you have something more complicated such as a monorepo; or once you're finished testing, read the Documentation for more details on configuring Safety as an action.

About

Runs the Safety CLI dependency scanner against your project

Resources

Stars

Watchers

Forks

Packages

No packages published

Languages

  • Shell 95.8%
  • Dockerfile 4.2%