Enforce in GitHub Actions

Use scan for inventory and validate for policy enforcement.

Blocking Validation

name: FlagLint
on: [pull_request]

jobs:
  flaglint:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: actions/setup-node@v4
        with:
          node-version: 20
      - run: npm ci
      - run: npx flaglint validate ./src --no-direct-launchdarkly

Do not put continue-on-error: true on the blocking validation step.

SARIF Annotations

- name: Validate direct SDK policy
  run: |
    npx flaglint validate ./src \
      --no-direct-launchdarkly \
      --bootstrap-exclude "src/provider/setup.ts" \
      --format sarif \
      --output flaglint-validation.sarif

- name: Upload SARIF
  if: always()
  uses: github/codeql-action/upload-sarif@v3
  with:
    sarif_file: flaglint-validation.sarif

SARIF findings use rule id flaglint.direct-launchdarkly.

Feedback

• Edit this page on GitHub
• Report an unsupported pattern
• Next: Shared Client Architecture