Home

marketing

@kunalnagarco/action-cve

A GitHub action that sends Dependabot Vulnerability Alerts to multiple sources:

Slack
PagerDuty
Zenduty

Usage

name: 'Check for Vulnerabilities'

on:
  schedule:
    - cron: '0 */6 * * *' # every 6 hours

jobs:
  main:
    runs-on: ubuntu-latest
    steps:
      # X.X.X - Latest version available at: https://github.com/kunalnagarco/action-cve/releases
      - uses: kunalnagarco/action-cve@vX.X.X
        with:
          token: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
          slack_webhook: ${{ secrets.SLACK_WEBHOOK }}
          pager_duty_integration_key: ${{ secrets.PAGER_DUTY_INTEGRATION_KEY }}
          zenduty_api_key: ${{ secrets.ZENDUTY_API_KEY }}
          zenduty_service_id: ${{ secrets.ZENDUTY_SERVICE_ID }}
          zenduty_escalation_policy_id: ${{ secrets.ZENDUTY_ESCALATION_POLICY_ID }}
          count: 10

Action Inputs

Input	Description
`token`	GitHub Personal Access Token. Create one here
`slack_webhook`	Slack Incoming Webhook URL. More info here
`pager_duty_integration_key`	Pager Duty Service Integration Key. Also known as Routing key. More info here
`zenduty_api_key`	Create a Zenduty API Key by visiting Account Settings > API Keys
`zenduty_service_id`	Zenduty Service ID: https://docs.zenduty.com/docs/services
`zenduty_escalation_policy_id`	Zenduty Escalation Policy ID: https://docs.zenduty.com/docs/escalationpolicies
`count`	Number of alerts to send. Defaults to `20`

Attributions

Bug icon: Made by Freepik from https://www.flaticon.com/

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Home

@kunalnagarco/action-cve

Usage

Action Inputs

Attributions

Clone this wiki locally