React2Shell Guard - CVE-2025-55182 Scanner
Version updated for https://github.com/gensecaihq/react2shell-scanner to version v1.1.1.
- This action is used across all versions by ? repositories.
Go to the GitHub Marketplace to find the latest changes.
Release notes
GitHub Marketplace Action Ready! 🎉
This release makes the GitHub Action ready for the Marketplace with enhanced features:
New Action Features
- Job Summary - Rich markdown summary in GitHub Actions UI
- PR Comments - Automatic comments on PRs with vulnerability findings
- SARIF Upload - One-click upload to GitHub Security tab
- Multiple Scan Types - Support for repo, SBOM, and container scanning
- Ignore Paths - Exclude paths from scanning
Usage
- uses: gensecaihq/react2shell-scanner@v1
with:
path: '.'
format: sarif
upload-sarif: true
add-pr-comment: true
fail-on-vuln: true
Action Inputs
| Input | Description | Default |
|---|---|---|
path | Path to scan | . |
scan-type | Type: repo, sbom, container | repo |
format | Output: text, json, sarif | text |
fail-on-vuln | Fail if vulnerable | true |
upload-sarif | Upload SARIF | false |
add-pr-comment | Comment on PRs | false |
Publishing to Marketplace
To publish this action to GitHub Marketplace:
- Go to the release page
- Click “Edit”
- Check “Publish this Action to the GitHub Marketplace”
- Select category: “Security”
- Save
Upgrade
npm install react2shell-guard@latest