CI & GitHub

Gate every pull request

Run a hullcheck on every push and block the merge when a critical slips in. The build fails with a non-zero exit; the findings print in the log.

GitHub Actions

Drop this in .github/workflows/hullchecks.yml:

.github/workflows/hullchecks.yml
name: Hullchecks
on: [pull_request]

jobs:
  hullcheck:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: hullchecks/scan-action@v1
        with:
          fail-on: critical

Any other CI

The CLI is the universal path — one step, no setup:

ci step
# works on any CI (GitLab, CircleCI, Jenkins, …)
npx @hullchecks/cli . --fail-on critical

Pre-commit hook

Catch issues before they're even pushed:

.pre-commit-config.yaml
# .pre-commit-config.yaml
repos:
  - repo: https://github.com/hullchecks/hullchecks
    rev: v0.1.0
    hooks:
      - id: hullchecks

Continuous monitoring (Pro)

Connect a repository in your dashboard and every PR is re-inspected automatically, with score history and an alert the moment a new critical appears — no workflow file to maintain. See Plans & limits.

CI & GitHub · Hullchecks Docs