Tool
List code scanning alerts
The List Code Scanning Alerts tool provides developers with a comprehensive view of security alerts identified in their GitHub repositories. It helps track and manage code scanning results efficiently to maintain code quality and security.
Features
- Retrieve code scanning alerts filtered by severity levels such as critical, high, medium, and low.
- Filter alerts based on their state, including open, closed, dismissed, or fixed statuses.
- Support for specifying the Git reference to target particular branches or commits.
- Capability to filter alerts by the scanning tool used, enabling focused security reviews.
- Easy integration with GitHub repositories to streamline security monitoring and remediation workflows.
Benefits
- Enhances security by promptly identifying and managing potential vulnerabilities in code.
- Improves code quality through continuous scanning and alert monitoring.
- Saves time with precise filtering options that prioritize critical alerts.
- Facilitates collaboration by clearly tracking the state of code scanning issues.
- Supports proactive security practices aligned with DevSecOps methodologies.
Description
List code scanning alerts in a GitHub repository.
Parameters
6 parameters
| Name | Type | Description |
|---|---|---|
| ownerrequired | string | The owner of the repository. |
| ref | string | The Git reference for the results you want to list. |
| reporequired | string | The name of the repository. |
| severity | enum | Filter code scanning alerts by severity |
| state | enum | Filter code scanning alerts by state. Defaults to open |
| tool_name | string | The name of the tool used for code scanning. |