{"id":20448898,"url":"https://github.com/koslib/ga-dtfy","last_synced_at":"2026-06-06T19:32:02.240Z","repository":{"id":65160513,"uuid":"383092339","full_name":"koslib/ga-dtfy","owner":"koslib","description":"Automatically start a Detectify scan on your assets before you ship them to production.","archived":false,"fork":false,"pushed_at":"2021-07-07T06:50:31.000Z","size":4,"stargazers_count":2,"open_issues_count":0,"forks_count":1,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-01-15T22:26:28.103Z","etag":null,"topics":["cicd","detectify","devsecops","devsecops-pipeline","security-tools"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/koslib.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-07-05T09:54:35.000Z","updated_at":"2021-07-07T10:09:57.000Z","dependencies_parsed_at":"2023-01-13T15:43:58.054Z","dependency_job_id":null,"html_url":"https://github.com/koslib/ga-dtfy","commit_stats":{"total_commits":3,"total_committers":1,"mean_commits":3.0,"dds":0.0,"last_synced_commit":"3014f4c03648f90cee8f218353aff2f4432b5374"},"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/koslib%2Fga-dtfy","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/koslib%2Fga-dtfy/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/koslib%2Fga-dtfy/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/koslib%2Fga-dtfy/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/koslib","download_url":"https://codeload.github.com/koslib/ga-dtfy/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":241997528,"owners_count":20055118,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cicd","detectify","devsecops","devsecops-pipeline","security-tools"],"created_at":"2024-11-15T10:37:31.455Z","updated_at":"2025-12-01T19:06:35.971Z","avatar_url":"https://github.com/koslib.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ga-dtfy\n\nA Github Action helping you scan whatever you ship with Detectify, by triggering a [Deep Scan](https://detectify.com/product/deep-scan). Currently works for web applications.\n\n# Instructions\n\n1. Sign up to Detectify, add your asset and validate the ownership of your application domain.\n2. Generate a Detectify API key \n3. Create a scan profile for your application and fetch its token.\n4. Trigger a Deep Scan with your GA workflow. \n\nAn example follows - take it as a very simple example which can be adapted as needed to fit your scanning needs:\n\n```yaml\nname: \"Security scan\"\non: [ push ]\n\njobs:\n  run_scan:\n    runs-on: ubuntu-latest\n    name: A job to start a Detectify scan\n    steps:\n      - name: Start scan\n        uses: koslib/ga-dtfy@master\n        id: start_scan\n        with:\n          api_key: ${{ secrets.DETECTIFY_API_KEY }}\n          scan_profile_token: ${{ secrets.DETECTIFY_SCAN_PROFILE_TOKEN }}\n      - name: Start scan result\n        run: echo \"Detectify responded with ${{ steps.start_scan.outputs.result }}\"\n\n```\n\nThe example workflow file can be found also [here](.github/workflows/example.yml) which you can add into your GA config.\n\n\u003e Note: an empty (blank-string) response but no error is a good sign! The scan has been triggered!\n\n# Config\n\nThis Github Action requires two secrets set in your repository:\n\n1. `DETECTIFY_API_KEY`: your Detectify API key, the one you generated at step #2 of the instructions above.\n2. `DETECTIFY_SCAN_PROFILE_TOKEN`: your scan profile token, which you fetched at step #3 of the instructions above.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkoslib%2Fga-dtfy","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkoslib%2Fga-dtfy","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkoslib%2Fga-dtfy/lists"}