ExtGuard
Docs

Run ExtGuard in CI/CD

Catch rejection errors on every push, before the zip ever reaches the Chrome Web Store.

01

Get an API key

Go to /dashboard/api-keys and create a key. Save it to your repo as a secret named EXTGUARD_API_KEY.

02

Add the workflow file

Save this as .github/workflows/extguard.yml:

name: ExtGuard Scan
on:
  push:
    branches: [main]
  pull_request:

jobs:
  scan:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - name: Build extension
        run: npm ci && npm run build
      - name: Zip extension
        run: cd dist && zip -r ../extension.zip .
      - name: ExtGuard scan
        run: |
          curl -X POST https://extguard.online/api/v1/scan \
            -H "Authorization: Bearer ${{ secrets.EXTGUARD_API_KEY }}" \
            -F "[email protected]" \
            --fail-with-body
03

Or run it locally

The CLI ships soon. Use the cURL example above in the meantime.

npx extguard scan ./dist/extension.zip --api-key $EXTGUARD_API_KEY

Exit codes

  • 0No critical issues — safe to submit
  • 1Critical issues found — fix before submitting
  • 2Auth or network error