EasyAudit integrates with all major CI/CD platforms for automated code scanning. Results can be viewed as artifacts or integrated with platform-specific security dashboards.
| Platform | Config File | Documentation |
|---|---|---|
| GitHub Actions | .github/workflows/*.yml |
github-actions.md |
| GitLab CI | .gitlab-ci.yml |
gitlab-ci.md |
| Bitbucket Pipelines | bitbucket-pipelines.yml |
bitbucket-pipelines.md |
| Azure DevOps | azure-pipelines.yml |
azure-devops.md |
| CircleCI | .circleci/config.yml |
circleci.md |
| Jenkins | Jenkinsfile |
jenkins.md |
| Travis CI | .travis.yml |
travis-ci.md |
name: EasyAudit
on: [push, pull_request]
jobs:
scan:
runs-on: ubuntu-latest
container:
image: ghcr.io/crealoz/easyaudit:latest
steps:
- uses: actions/checkout@v6
- run: easyaudit scan --format=sarif --output=report.sarif .
- uses: github/codeql-action/upload-sarif@v4
with:
sarif_file: report.sarif💡 Want automatic fixes? See Automated PR workflow
| Format | Use Case |
|---|---|
sarif |
GitHub Code Scanning, GitLab SAST |
json |
Custom tooling, artifacts, fix-apply input |
html |
Visual report, shareable dashboards, upload as artifact |
| Code | Meaning |
|---|---|
| 0 | No issues found |
| 1 | Warnings found |
| 2 | Errors found |
Use exit codes to fail builds on critical issues.
When scanning a Magento installation root, EasyAudit automatically excludes noise directories (vendor, generated, var, pub, setup, lib, dev, phpserver, update). No --exclude flag needed.
EasyAudit automatically detects CI environments and adds metadata to API requests. Supported detection:
GITHUB_ACTIONS→ GitHubGITLAB_CI→ GitLabBITBUCKET_PIPELINE_UUID→ BitbucketTF_BUILD→ Azure DevOpsCIRCLECI→ CircleCIJENKINS_URL→ JenkinsTRAVIS→ Travis CI
- CLI Usage - Command-line options
- Processors - Available checks
- Automated PR (paid) - Auto-fix via API