Understanding GitHub Actions integration

2 minute read

The GitHub Actions (GHA) integration connects GHA workflows to CloudBees Unify, giving teams CloudBees analytics and security dashboards without requiring migration away from GHA. The integration works in two directions: CloudBees Unify displays GHA workflow activity, and GHA actions push data back into CloudBees Unify.

What the integration provides

The integration provides visibility and data publishing.

Visibility. GHA workflows, runs, and jobs are displayed in the CloudBees Unify UI. Within the run details view, you can see test results, build artifacts, evidence items, and deployment information generated by GHA, the same data available for CloudBees-native workflows.

Data publishing. Dedicated GHA actions let workflows push data into CloudBees Unify:

  • Register build artifacts and manage artifact version labels.

  • Publish test results from JUnit, TestNG, and other test frameworks.

  • Publish evidence items for audit and traceability.

  • Publish security scan findings from tools such as Black Duck, Coverity, Gitleaks, Gosec, Grype, Trivy, and Klocwork.

  • Trigger CloudBees workflows from a GHA run.

How the integration works

The CloudBees GitHub App acts as the bridge between GitHub and CloudBees Unify, establishing the webhook connection that allows CloudBees Unify to receive GHA workflow events. A CloudBees Unify component must be connected to the repository containing the GHA workflow for events to be received and displayed.

Only runs executed after successful integration are displayed. Historical runs are not back-filled. If you connect an existing GHA workflow, only runs that occur after the integration is in place appear in CloudBees Unify.

GitHub Actions integration vs CloudBees workflows

The GHA integration and CloudBees-native workflows serve different starting points.

The GHA integration is designed for teams already invested in GHA who want CloudBees visibility, analytics, and security posture data without migrating their existing automation. GHA continues to execute the workflows; CloudBees Unify observes and enriches the results.

CloudBees-native workflows are designed for teams building new automation or ready to migrate fully to the CloudBees platform. They run directly on the CloudBees workflow engine and have access to the full suite of CloudBees actions.

Both approaches can coexist within an organisation. A team can retain GHA for existing workflows while building new workflows natively in CloudBees Unify.