Xendit API Key Scanner is a Github action to detect Xendit API Key in the pull request. The action will fail if there is any detected Xendit API Key in the changed code in a spesific pull request. The action will give the detail path in Pull Request Comment.
Example of PR Comment :
github-token(Optional) Github token to create PR Comment. By default using github token provided by github action.
- Create config inside
.github/workflowfolder. example config :
name: 'Test - Xendit API Key Detector Action'
on: pull_request
jobs:
scan_job:
runs-on: ubuntu-latest
name: Xendit API Key Detector Action
steps:
- name: Scan Job
uses: xendit/[email protected]
using custom gihtub-token input (optional) :
name: 'Test - Xendit API Key Detector Action'
on: pull_request
jobs:
scan_job:
runs-on: ubuntu-latest
name: Xendit API Key Detector Action
steps:
- name: Scan Job
uses: xendit/[email protected]
with:
github-token: <github-token>
- Create pull request to test the action
- Only detect in the Pull Request trigger
Running test suite
npm install
npm run testRun before open pull request
npm run prepareFor any requests, bug or comments, please open an issue or submit a pull request.