Home
A GitHub action that sends Dependabot Vulnerability Alerts to multiple sources:
- Slack
- PagerDuty
- Zenduty
name: 'Check for Vulnerabilities'
on:
schedule:
- cron: '0 */6 * * *' # every 6 hours
jobs:
main:
runs-on: ubuntu-latest
steps:
# X.X.X - Latest version available at: https://github.com/kunalnagarco/action-cve/releases
- uses: kunalnagarco/action-cve@vX.X.X
with:
token: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
slack_webhook: ${{ secrets.SLACK_WEBHOOK }}
pager_duty_integration_key: ${{ secrets.PAGER_DUTY_INTEGRATION_KEY }}
zenduty_api_key: ${{ secrets.ZENDUTY_API_KEY }}
zenduty_service_id: ${{ secrets.ZENDUTY_SERVICE_ID }}
zenduty_escalation_policy_id: ${{ secrets.ZENDUTY_ESCALATION_POLICY_ID }}
email_from: from@email.com
email_list: channelOne@email.com,channelTwo@email.com
email_subject: My Custom Email Subject # (not required)
email_transport_smtp_port: 1003 # (not required, default is 587 for TLS, send 465 for STARTTLS)
email_transport_smtp_user: smtpUser@email.com
email_transport_smtp_password: smtpPassword
count: 10| Input | Description |
|---|---|
token |
[Required] GitHub Personal Access Token. Create one here |
slack_webhook |
Slack Incoming Webhook URL. More info here |
pager_duty_integration_key |
Pager Duty Service Integration Key. Also known as Routing key. More info here |
zenduty_api_key |
Create a Zenduty API Key by visiting Account Settings > API Keys |
zenduty_service_id |
Zenduty Service ID: https://docs.zenduty.com/docs/services |
zenduty_escalation_policy_id |
Zenduty Escalation Policy ID: https://docs.zenduty.com/docs/escalationpolicies |
count |
Number of alerts to send. Defaults to 20
|
- Bug icon: Made by Freepik from https://www.flaticon.com/