Implementation of bundler-audit with reviewdog on pull requests to improve security review experience.
-
github_token- Github Token.
- Optional
- Default value is
github.GITHUB_TOKEN
-
level- Report level for reviewdog, options are
info, warning, error - Optional
- Default value is
error
- Report level for reviewdog, options are
-
reporter- Reporter of reviewdog command, options are
github-pr-check, github-check, github-pr-review, github-pr-annotations - Optional
- Default value is
github-pr-review
- Reporter of reviewdog command, options are
-
filter_mode- Filtering mode for the reviewdog command, options are
added, diff_context, file, nofilter - Optional
- Default value is
added
- Filtering mode for the reviewdog command, options are
-
fail_on_error- Exit code for reviewdog when errors are found, options are
true, false - Optional
- Default value is
false
- Exit code for reviewdog when errors are found, options are
name: "Ruby on Rails CI"
on: [ pull_request ]
jobs:
lint:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Install Ruby and gems
uses: ruby/setup-ruby@87ccb7599f56623090bd4a1c8ece2c4091856de3 # v1.92
# Add or replace any other lints here
- name: bundler_audit
uses: buck-ai/[email protected]
with:
reporter: github-pr-review
github_token: ${{secrets.GITHUB_TOKEN}}