GitHub checks integration

This feature integrates Harden-Runner insights into the GitHub Checks UI, providing developers with immediate feedback on outbound network activity. With this integration, developers no longer need to rely on email or Slack notifications or visit the StepSecurity dashboard to monitor anomalous network calls.

How It Works

1. Pull Request Creation:

When a pull request is created, the StepSecurity Harden Runner Check will display the network monitoring status for all associated workflow runs.

1. Completion of Workflow Runs:

Once all workflow runs linked to the pull request are completed, the status check will indicate either Pass or Fail:

✅ Pass: No anomalous outbound calls detected.

❌ Fail: At least one anomalous outbound call detected.

1. Clicking the Details link next to the check provides:

• A list of monitored workflow runs.

• Links to insights pages for each run.

• If the check has failed, a list of anomalous outbound calls detected.

How to Enable the GitHub Checks Feature

Step 1: Open the SideBar and Access Settings

• Navigate to the StepSecurity Dashboard

• Open the sidebar and click on Settings

Step 2: Select GitHub Check and Enable the Feature

• Click on GitHub Checks from the settings menu

• Locate the repository you want to enable checks for

• Tick the checkbox to enable the checks feature

• Click Save to apply the changes