Korext: AI Code Governance
БесплатноНе проверенGovernance copilot for AI-assisted coding. 72 packs, 532 rules, proof bundles.
Описание
Governance copilot for AI-assisted coding. 72 packs, 532 rules, proof bundles.
README
Enforce compliance policies on AI generated code in your GitHub workflows.
72 policy packs. 532 rules. 13 languages. Violations appear as GitHub Code Scanning annotations on pull requests.
Quick Start
Add this to .github/workflows/korext.yml:
name: Korext Enforcement
on: [push, pull_request]
permissions:
contents: read
security-events: write
jobs:
enforce:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: Korext/enforce-action@v3
with:
api-token: ${{ secrets.KOREXT_API_TOKEN }}
Korext scans your code on every push and PR using the default web policy pack.
How It Works
- Install: The action installs the Korext CLI
- Scan: Runs
korext enforceagainst your codebase with the selected policy pack - Report: Generates a SARIF file and uploads it to GitHub Code Scanning
- Gate: Fails the workflow if critical or high severity violations are found
Violations appear as annotations directly on the PR diff, powered by GitHub Code Scanning.
Inputs
| Input | Description | Required | Default |
|---|---|---|---|
directory |
Directory to scan for policy violations | No | . |
pack |
Policy Pack ID to enforce | No | web |
api-token |
Korext API token for authenticated mode | No | (anonymous) |
fail-on-violations |
Fail workflow on critical/high violations | No | true |
sarif-upload |
Upload SARIF to GitHub Code Scanning | No | true |
region |
Data processing region (us, eu, apac) | No | (default) |
sign-bundles |
Request signed proof bundles | No | true |
Outputs
| Output | Description |
|---|---|
violations |
Total number of policy violations found |
sarif-file |
Path to the generated SARIF results file |
bundle-count |
Number of proof bundles generated |
bundles-signed |
Number of signed proof bundles |
bundle-ids |
Comma separated list of proof bundle IDs |
Examples
Multiple Policy Packs
- uses: Korext/enforce-action@v3
with:
pack: web,pci-dss-v1,owasp-v1
api-token: ${{ secrets.KOREXT_API_TOKEN }}
EU Data Sovereignty
- uses: Korext/enforce-action@v3
with:
pack: gdpr-v1
region: eu
api-token: ${{ secrets.KOREXT_API_TOKEN }}
Scan Specific Directory
- uses: Korext/enforce-action@v3
with:
directory: src/
pack: hipaa-v1
api-token: ${{ secrets.KOREXT_API_TOKEN }}
Warn Only (do not fail)
- uses: Korext/enforce-action@v3
with:
pack: web
fail-on-violations: 'false'
Authentication
For full access to all policy packs and signed proof bundles, create an API token in your KOREXT dashboard and add it as a GitHub secret:
- Go to app.korext.com > Settings > API Tokens
- Create a new token
- Add it as
KOREXT_API_TOKENin your repo's Settings > Secrets and variables > Actions
Without a token, the action runs in anonymous mode (20 requests per hour, limited packs).
Links
License
Proprietary. See Terms of Service.
Установить Korext: AI Code Governance в Claude Desktop, Claude Code, Cursor
unyly install korext-ai-code-governanceСтавит в Claude Desktop, Claude Code, Cursor и VS Code — сам разбирается с npx, uvx и сборкой из исходников.
Впервые? Поставь CLI: curl -fsSL https://unyly.org/install | sh
Или настроить вручную
Выполни в терминале:
claude mcp add korext-ai-code-governance -- npx -y korextFAQ
Korext: AI Code Governance MCP бесплатный?
Да, Korext: AI Code Governance MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для Korext: AI Code Governance?
Нет, Korext: AI Code Governance работает без API-ключей и переменных окружения.
Korext: AI Code Governance — hosted или self-hosted?
Доступен hosted-вариант: Unyly запускает сервер в облаке, локальная установка не обязательна.
Как установить Korext: AI Code Governance в Claude Desktop, Claude Code или Cursor?
Открой Korext: AI Code Governance на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
GitHub
PRs, issues, code search, CI status
автор: GitHubFilesystem
Secure file operations with configurable access controls.
Memory
Knowledge graph-based persistent memory system.
Template MCP Server
A CLI tool to create a new Model Context Protocol server project with TypeScript support, dual transport options, and an extensible structure
автор: mcpdotdirectCompare Korext: AI Code Governance with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории development
