This is a collection of SecureFlag's GitHub Actions for integrating our hands-on virtual labs and Knowledge Base articles into your CI/CD pipelines and GitHub experience.
-
assignments_check: Verify that contributors have completed their required SecureFlag assignments (initial, pending, or non-expired) before allowing code to be merged. -
advisory_training_check: Help enforce secure development practices by checking whether contributors have completed relevant security training. -
sarif_contextual_training: Augment Code Scanning Alerts by linking to relevant labs and articles from the SecureFlag Knowledge Base. -
repo_to_threat_model: Analyze your codebase and generate threat models using SecureFlag's ThreatCanvas.