Promptfoo Code Scan GitHub Action

Scan pull requests for LLM security vulnerabilities using AI-powered analysis.

Usage

name: Promptfoo Code Scan

on:
  pull_request:
    types: [opened]

permissions:
  id-token: write
  contents: read
  pull-requests: write

jobs:
  scan:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
        with:
          fetch-depth: 0

      - uses: promptfoo/code-scan-action@v0
        with:
          minimum-severity: medium

Inputs

Input	Description	Default
`minimum-severity`	Minimum severity to report: `low`, `medium`, `high`, `critical`	`high`
`server-url`	Code scan server URL	`https://api.promptfoo.dev`

License

MIT

Name		Name	Last commit message	Last commit date
Latest commit History 7 Commits
cli-bundle		cli-bundle
dist		dist
README.md		README.md
action.yml		action.yml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Promptfoo Code Scan GitHub Action

Usage

Inputs

License

About

Uh oh!

Releases

Packages

Uh oh!

Languages

promptfoo/code-scan-action

Folders and files

Latest commit

History

Repository files navigation

Promptfoo Code Scan GitHub Action

Usage

Inputs

License

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages