You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
GitHub Action
NodeSecure Continuous Integration
v1.4.0
@nodesecure/ci brings together a set of tools to identify dependencies vulnerabilities and track most common malicious code and patterns.
Please refer to the @nodesecure/ci documentation to see more about the project.
Simply add this action to your workflow
uses: NodeSecure/ci-action@v1
Here's a sample complete workflow you can add to your repositories:
.github/workflows/nodesecure.yml
name: "NodeSecure Continuous Integration"
on: [push]
jobs:
validation:
name: "Analysis"
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: NodeSecure/ci-action@v1
with:
strategy: npm
vulnerabilities: medium
warnings: off
reporters: console
Thanks goes to these wonderful people (emoji key):
Antoine 💻 |
MIT