RFP.2.2 demo: severity gate — blocks on Critical & High

[dave-apisec]

What this demonstrates

RFP.2.1 + RFP.2.2 — Scan triggered on PR with a hard severity gate.

• Runner: ephemeral ubuntu-latest GitHub-hosted VM
• Credential handling: APISEC_TOKEN as GitHub Secret, APISEC_AUTH_ID as GitHub Variable
• Runs docker.io/apisec/apisec-scan-and-gate:latest container
• APISEC_MAX_CRITICAL=0 and APISEC_MAX_HIGH=0 — any Critical or High finding exits non-zero
• Non-zero exit → step fails → PR check fails → merge button locked

Expected result: ❌ Check fails (crAPI has known High/Critical findings). PR comment shows BLOCKED status with a direct link to the scan in APIsec.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

☂️ Python Coverage

current status: ✅

Overall Coverage

Lines	Covered	Coverage	Threshold	Status
1363	1089	80%	0%	🟢

New Files

No new covered files...

Modified Files

No covered modified files...

updated for commit: db3e5b8 by action🐍

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.

[github-actions]

APIsec API Security Scan

Severity Gate	Result
🔴 Critical / High (blocking)	❌ BLOCKED — resolve findings before merging

View scan results in APIsec →

This PR is blocked from merging. Resolve all Critical and High severity findings and re-run the scan.