Review Jit Security Alerts
Manage review assignment for high and medium risk Jit security alerts.
Configuration Description
**Review Jit High Alerts**
* Conditions (all must be true):
* Jit reports one or more high vulnerabilities for the PR
* Automation Actions:
* Require a review from the organization’s security team.
* Require 2 reviewers.
* Post a comment explaining why this action was taken.
**Review Jit Medium Alerts**
* Conditions (all must be true):
* Jit reports one or more medium vulnerabilities for the PR
* Automation Actions:
* Require 2 reviewers
* Post a comment explaining why this action was taken.
Review Jit Security Alerts
# -*- mode: yaml -*-
manifest:
version: 1.0
automations:
review_jit_high_alerts:
if:
- {{ jit.metrics.HIGH > 0 }}
run:
- action: require-reviewers@v1
args:
reviewers: [my-organization/security-team]
- action: set-required-approvals@v1
args:
approvals: 2
- action: add-comment@v1
args:
comment: |
This PR requires additional review because Jit reported one or more high risk vulnerabilities.
review_jit_medium_alerts:
if:
- {{ jit.metrics.MEDIUM > 0 }}
run:
- action: set-required-approvals@v1
args:
approvals: 2
- action: add-comment@v1
args:
comment: |
This PR requires additional reviewers because Jit reported one or more medium risk vulnerabilities.
jit: {{ pr | extractJitFindings }}