GitHub
GitHub Actions
The GitHub Actions scraper creates configuration items from GitHub Actions workflows. Specify the owner, repository, and branch to scrape.
github-actions.yamlapiVersion: configs.flanksource.com/v1
kind: ScrapeConfig
metadata:
name: github-actions-scraper
spec:
githubActions:
- owner: flanksource
repository: config-db
connection: connection://default/github-pat
branch: main
GitHub Repository
The GitHub Repository scraper creates GitHub::Repository config items and optionally fetches security alerts (Dependabot, code scanning, secret scanning) and OpenSSF Scorecard data as analyses.
| Field | Description | Scheme | Required |
|---|---|---|---|
repositories | List of repositories to scrape | []GitHubRepository | true |
personalAccessToken | Personal access token for authentication | []EnvVar | |
connection | Connection name for GitHub credential | string | |
security | Enable Dependabot, code scanning, and secret scanning alerts | bool | |
openssf | Enable OpenSSF Scorecard data | bool | |
securityFilters | Filters for security alerts | SecurityFilters |
GitHubRepository
| Field | Description | Scheme | Required |
|---|---|---|---|
owner | GitHub repository owner | string | true |
repo | GitHub repository name | string | true |
SecurityFilters
| Field | Description | Scheme |
|---|---|---|
severity | Filter alerts by severity (e.g. critical, high) | []string |
state | Filter alerts by state (e.g. open, fixed) | []string |
maxAge | Only include alerts newer than this duration (e.g. 7d, 24h) | string |