CircleCI.

CLICLI

Add a `check-upstream` job to your `.circleci/config.yml`. The CLI returns a non-zero exit code when any tracked service crosses your risk threshold, so the workflow stops there before deploy.

Add the job to your CircleCI config.

.circleci/config.yml

version: 2.1

jobs:
  check-upstream:
    docker:
      - image: cimg/node:20.11
    steps:
      - checkout
      - run:
          name: Scan dependencies
          command: npx @checkupstream/cli scan
      - run:
          name: Risk gate
          command: npx @checkupstream/cli risk --fail-on critical

workflows:
  pr:
    jobs:
      - check-upstream:
          context: checkupstream

Tip

Store `CHECKUPSTREAM_API_TOKEN` in a CircleCI **context** rather than as a project env var so multiple repos can share the same credential without duplication.

GitHub Actions recipe Credentials & Security

Ship reliable upstream.

Drop the SDK in, point it at your project key, and start seeing live upstream telemetry inside the dashboard.

Get an SDK Key Browse all recipes