gem-audit
Version updated for https://github.com/7a6163/gem-audit-action to version v1.0.1.
- This action is used across all versions by ? repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
The gem-audit-action is a GitHub Action designed to automatically audit Gemfile.lock files for vulnerable gem versions and insecure sources using the gem-audit tool. It helps developers identify and address security issues in their Ruby dependencies, ensuring safer applications by detecting vulnerabilities and stale advisory databases. Key capabilities include severity-based filtering, JSON reporting, compatibility with monorepos, and integration with reviewdog for inline pull request comments.
Release notes
Full Changelog: https://github.com/7a6163/gem-audit-action/compare/v1.0.0...v1.0.1