GitHub Action Guide
Automate dependency health checks on every pull request. Fail CI on critical risk before code merges.
Quick Setup
Add this workflow file to your repository at .github/workflows/depgraph.yml:
Add your API key as a repository secret named DEPGRAPH_API_KEY. Generate your key at Settings → API Keys.
Inputs
| Input | Required | Default | Description |
|---|---|---|---|
| api-key | Yes | — | API key from dashboard (Pro plan required) |
| fail-on | No | critical | none | critical | high | medium |
| post-comment | No | true | Post health report as PR comment |
Outputs
| Output | Description |
|---|---|
| overall-score | Project health score (0–100) |
| critical-count | Number of critical-risk new dependencies |
| high-count | Number of high-risk new dependencies |
| report-url | Public URL to the full scan report |