Integrate with GitHub Actions

Runtime security monitoring for your CI workflows in GitHub actions.

  1. Open your project's repository in GitHub. In your repository, go to the "Actions" tab.

  2. Click "New Workflow" and create a new workflow file in .github/workflows

  3. Add the listen.dev GitHub Action and include the API key as a secret.

      - name: Run lstn scan 
        uses: listendev/action@v0.6
        with: 
          jwt: ${{ secrets.LSTN_API_KEY }}

To instrument an existing workflow, we recommend adding the step on top of your workflow file after the checkout step.

Commit and push the changes to activate the integration.

Scans are only invoked on events of type pull_request. Make sure this is configured on your desired branches on top of the workflow file.

Last updated

© 2024 Garnet Labs