capsec audit

Version updated for https://github.com/bordumb/capsec-github-action to version v1.0.2.

• This action is used across all versions by ? repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The capsec audit GitHub Action performs a static capability audit for Rust crates, identifying potentially risky calls to ambient authorities such as filesystem, network, and environment interactions. It automates security and risk analysis by detecting these issues, providing results in various formats (e.g., SARIF) for integration with GitHub Code Scanning, and optionally posting inline comments on pull requests. This action streamlines the identification of security concerns and enforces risk thresholds within CI/CD pipelines.

Release notes

Full Changelog: https://github.com/bordumb/capsec-github-action/compare/v1.0.1...v1.0.2

• bordumb
• GitHub Actions