Fetches a list of security vulnerabilities for repositories belonging to a GitHub organization, using the GitHub API (v4). Designed to be used as an Icinga plugin.
- Obtain a personal GitHub OAuth
token,
with the
repo
scope - Run
security-alert-notifier.rb --token <access_token> --organization <organization_name>
and any vulnerabilities that haven't been dismissed will be displayed in the console. If there are vulnerabilties then the check will return a "Warning" status, else "OK".
Basic tests can be run with
ruby security-alert-notifier_test.rb