Custodia Security Scan

Version updated for https://github.com/contactdavidpersonal-code/custodia-scan-action to version v1.

• This action is used across all versions by ? repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The Custodia Security Scan GitHub Action integrates automated security scanning into CI pipelines by analyzing code for vulnerabilities on every push or pull request. It detects issues like authentication flaws, injection vectors, hardcoded secrets, and insecure dependencies, using both rule-based checks and AI reasoning to minimize false positives. Additionally, it maps findings to compliance standards (e.g., SOC 2, OWASP, NIST), provides detailed annotations directly on PR diffs, and supports fast incremental scans, streamlining secure and compliant code delivery.

What’s Changed

OWASP Top 10 + AI security scanning for CI/CD pipelines.

• Scans on every push and pull request
• Diff mode on PRs (fast, quota-efficient)
• Native GitHub Actions annotations inline on PR diffs
• Compliance mapping: SOC 2, NIST CSF, EU AI Act, CWE
• Configurable fail-on severity threshold
• Free tier included — no card required

• contactdavidpersonal-code
• GitHub Actions