Elgato_dark/hyperdx
1
0
Fork 0
mirror of https://github.com/hyperdxio/hyperdx synced 2026-04-21 13:37:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6

chore: Add dependabot vulnerability notifications (#1942)

Browse source
This commit is contained in:
Tom Alexander 2026-03-18 17:02:22 -04:00 committed by GitHub
parent de914816f7
commit 730fcbe6e3
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 17 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
.github/workflows/security-audit.yml vendored Normal file
View file

@ -0,0 +1,17 @@
name: Vulnerability Alerts
on:
schedule:
- cron: '0 9 * * *' # Daily at 9am UTC
workflow_dispatch:
jobs:
alert:
runs-on: ubuntu-latest
steps:
- uses: kunalnagarco/action-cve@v1.14.23
with:
org: hyperdxio
token: ${{ secrets.DEPENDABOT_NOTIF_PAT }}
slack_webhook: ${{ secrets.SLACK_WEBHOOK_VULNERABILITIES }}
severity: medium,high,critical