Skip to content
/ bundle-audit-check-action Public

Runs bundle-audit on pull requests with Gemfile.lock changes and fails the check if vulnerabilities are found.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

planningcenter/bundle-audit-check-action

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
.github
.github
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
action.yml
action.yml
 
 

Repository files navigation

Bundle Audit Check Action

This is a GitHub action that runs bundle-audit check --update, and then, if vulnerabilities are detected, fail the current check. It's recommended to run it when a PR is modified and contains changes to Gemfile.lock.

Example usage

name: PR Bundler Audit

on:
  pull_request:
    types: [opened, synchronize]
    paths:
      - 'Gemfile.lock'

jobs:
  bundle-audit:
    runs-on: ubuntu-latest

    steps:
      - name: Run PR Bundle Audit Action
        uses: planningcenter/bundle-audit-check-action@v1

About

Runs bundle-audit on pull requests with Gemfile.lock changes and fails the check if vulnerabilities are found.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

14 watching

Forks

0 forks
Report repository

Releases 2

v1.1.0 Latest
Dec 19, 2024
+ 1 release

Packages

No packages published

Contributors 2

  •  
  •