Skip to content

v1.0.0

Marketplace
Marketplace

Choose a tag to compare

View all tags
@bordumb bordumb released this 20 Mar 18:01
· 7 commits to main since this release
v1.0.0
4866bd6

capsec audit GitHub Action v1.0.0

First release of the official GitHub Action for capsec — static capability auditing for
Rust.

What it does

Runs cargo capsec audit on your Rust workspace and reports ambient authority usage (filesystem, network, environment, process, FFI) in your code.

Features

  • SARIF upload to GitHub Code Scanning (findings appear in the Security tab)
  • Inline PR comments via reviewdog (free for all repos, no GHAS required)
  • Baseline diffing — only fail on new findings introduced in a PR
  • Configurable threshold — fail on low, medium, high, or critical
  • Installs from crates.io automatically

Quick start

- uses: bordumb/capsec-github-action@v1
 with:
   fail-on: high

See README.md for full docs.

Assets 2
Loading