Added CI for scanning vulnerabilities and reports to github security tab #6 , in pull requests github actions bot will comment the vulnerabilities that is present in the PR repo
Screenshots
On pull requests if the forked repo contained vulnerable packages then the github-actions bot will comment the following..
On pushes to the branch the following action occurs:
It scans for vulnerable packages and updates in the github security tab incase any packages have been forcefully pushed.
Added CI for scanning vulnerabilities and reports to github security tab #6 , in pull requests github actions bot will comment the vulnerabilities that is present in the PR repo
Screenshots
On pull requests if the forked repo contained vulnerable packages then the github-actions bot will comment the following..
On pushes to the branch the following action occurs:
It scans for vulnerable packages and updates in the github security tab incase any packages have been forcefully pushed.
Check the forked repo and the sample PRs
Suggestion: In addition to this please enable dependabot too! :smile: