Skip to content
align-center

GitHub Action

poutine - GitHub Actions SAST

v0.15.2 Latest version

poutine - GitHub Actions SAST

align-center

poutine - GitHub Actions SAST

BoostSecurity.io’s poutine detects vulnerabilities and misconfigurations in your GitHub Actions workflows.

Installation

Copy and paste the following snippet into your .yml file.

              

- name: poutine - GitHub Actions SAST

uses: boostsecurityio/poutine-action@v0.15.2

Learn more about this action in boostsecurityio/poutine-action

Choose a version

poutine-action

This is a simple GitHub Action to simplify using poutine as part of GitHub Actions workflows.

Created by BoostSecurity.io, poutine is a security scanner that detects misconfigurations and vulnerabilities in the build pipelines of a repository. It supports parsing CI workflows from GitHub Actions and Gitlab CI/CD. When given an access token with read-level access, poutine can analyze all the repositories of an organization to quickly gain insights into the security posture of the organization's software supply chain.

Visit https://github.com/boostsecurityio/poutine for more details about poutine itself.