listen.dev Documentation
Welcome to listen.dev documentation – your go-to resource for getting started, understanding key concepts, and general help.
What is listen.dev?
listen.dev is a security platform that secures developers and organizations against risks originating from 3rd party dependencies. It provides comprehensive visibility and proactive threat detection for your CI/CD pipelines.
For developers, it provides real-time feedback inside existing workflows enabling them stay informed on security without compromising on velocity.
For security, it provides contextual visibility and guardrails -- allowing them to focus on critical risks and develop proactive security posture against emerging supply chain threats.
This empowering teams to identify risks early in the dev lifecycle, prevent costly breaches, and ensure a proactive security and compliance posture.
How can i use listen.dev in my workflows?
Integrating listen.dev into your workflows is a straightforward process:
Integrate using GitHub Actions: By adding listen.dev as a step in your GitHub Actions workflow, you gain automatic security checks with each build.
Real-time Alerts: Set up alerts to be notified instantly of any suspicious activity within your pipeline – such as attempts to exfiltrate environment variables.
Review and Act: view detailed information about each build's security events, and automatically trigger actions such as blocking a build.
Last updated