search

🔘Pynt for GitHub Actions

Integrate Pynt with GitHub Actions for automated API security testing. Enhance your CI/CD pipeline by adding Pynt’s robust security scans to your GitHub Actions workflows.

hashtag
What is GitHub Actions?

circle-info

💡 GitHub Actionsarrow-up-right allows you to automate workflows for building, testing, and deploying code. With native integration into GitHub repositories, you can trigger workflows based on events like pushes, pull requests, and schedule automation tasks.

GitHub Actions

hashtag
Pynt's integration with GitHub Actions

As part of its API security testing, Pynt allows seamless integration with GitHub Actions.

Pynt for GitHub Actions enables you to seamlessly integrate powerful API security testing into your GitHub Actions CI/CD pipelines. By incorporating Pynt into your GitHub Actions workflows, you can automate comprehensive security scans with every build, ensuring that your APIs are protected from vulnerabilities throughout the development process. Pynt’s integration with GitHub Actions is designed to be straightforward, allowing you to enhance your security posture without disrupting your existing CI/CD practices.

hashtag
GitHub Actions Configuration

  • Copy your Pynt ID into action secrets in your GitHub:

Add pynt-id to a Github secret

  • Make sure Python installed on the agent.

  • Add Pynt to your workflow, see the following example of a job in a Github workflow that runs Pynt on our goat vulnerable application:

hashtag
Controlling the return code from Pynt

pynt newman and pynt command have an optional flag --severity-level

With this flag, you have granular control over whether Pynt returns an error code (non zero) in the event of findings. Use this flag to control when Pynt will break the CI/CD run, allowed values are:

circle-info

💡 Need Help? For any questions or troubleshooting, reach out to the Pynt Community Supportarrow-up-right.

PreviousHow to get Pynt ID for CI/CD AuthenticationNextPynt for Azure DevOps Pipelines

Last updated