{"id":17609691,"url":"https://github.com/bitoiu/vulnerability-pr-checks","last_synced_at":"2025-04-30T13:52:57.309Z","repository":{"id":34885492,"uuid":"185468519","full_name":"bitoiu/vulnerability-pr-checks","owner":"bitoiu","description":"PR Checks for Security Vulnerabilities","archived":false,"fork":false,"pushed_at":"2023-01-09T17:47:50.000Z","size":1791,"stargazers_count":7,"open_issues_count":21,"forks_count":1,"subscribers_count":1,"default_branch":"master","last_synced_at":"2024-04-15T00:05:50.749Z","etag":null,"topics":["github-app","github-graphql","probot-app","secdevops","security-automation","security-vulnerability"],"latest_commit_sha":null,"homepage":"https://vulnerability-pr-checks.herokuapp.com","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"isc","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/bitoiu.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-05-07T19:51:02.000Z","updated_at":"2023-12-06T17:31:47.000Z","dependencies_parsed_at":"2023-01-15T09:56:00.541Z","dependency_job_id":null,"html_url":"https://github.com/bitoiu/vulnerability-pr-checks","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitoiu%2Fvulnerability-pr-checks","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitoiu%2Fvulnerability-pr-checks/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitoiu%2Fvulnerability-pr-checks/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitoiu%2Fvulnerability-pr-checks/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/bitoiu","download_url":"https://codeload.github.com/bitoiu/vulnerability-pr-checks/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":221117212,"owners_count":16759141,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["github-app","github-graphql","probot-app","secdevops","security-automation","security-vulnerability"],"created_at":"2024-10-22T17:09:43.608Z","updated_at":"2024-10-22T17:09:48.067Z","avatar_url":"https://github.com/bitoiu.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# vulnerability-pr-checks \n\n\u003e A GitHub App built with [Probot](https://github.com/probot/probot) that Probot App that posts GitHub Statuses Checks based on security vulnerabilities\n\n## Installation\n\nInstall the app at: https://github.com/apps/vulnerability-pr-checks\n\n## Current limitations\n\n- The app is by default ignoring dismissed vulnerabilities. This is an internal variable that soon needs to be a configuration on the `.github` folder.\n- GitHub Security Vulnerability alerts are only indexed on the `master` branch, this means that when checking for active vulnerabilities, the app is actually only checking master. This means that if the developer acts on the vulnerabilities on the branch, the results won't change. It's recommended if using the app, that security vulnerabilities are changed on another PR and merged before the current branch under analysis. Hoping one day all the branches are indexed, but this is the reality today.\n- I was lazy with the tests, sorry. \n\n## Running your own\n\nCheck instructions at: https://probot.github.io/docs/deployment/\n\n## Setup\n\n```sh\n# Install dependencies\nnpm install\n\n# Run the bot\nnpm start\n```\n\n## Contributing\n\nIf you have suggestions for how `vulnerability-pr-checks` could be improved, or want to report a bug, open an issue! We'd love all and any contributions.\n\nFor more, check out the [Contributing Guide](CONTRIBUTING.md).\n\n## License\n\n[ISC](LICENSE) © 2019 Vitor Monteiro \u003cbitoiu@github.com\u003e (https://github.com/bitoiu)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbitoiu%2Fvulnerability-pr-checks","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbitoiu%2Fvulnerability-pr-checks","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbitoiu%2Fvulnerability-pr-checks/lists"}