Using Github Actions
To make it easier for organizations using Github, we created a Github Action that can be easily integrated in your pipelines. By default, the action will launch a differential scan (only returning new vulnerabilities) when triggered by a pull request event. If you want to disable this behavior and always return all vulnerabilities, you can set the diff-scan input to false.To run the differential scan, the action must be triggered by a pull request event.
To do that, make sure to add the following to your workflow triggers:
Using our CLI
If you are not using Github you can still use our cli in your pipelines :1
Install our CLI
2
Launch our CLI
symbiotic-cli ci infra ./ --severity-threshold highExample in a Gitlab pipeline
Example in a Gitlab pipeline
Configuration
You can configure what makes the CI fail using our configuration file.If there is no configuration file in the repository or if this configuration file has no blocking property, the CI will pass by default.