Garnet Docs — Runtime visibility for untrusted execution

Add repository secret

In your repo: Settings → Secrets and variables → Actions → New repository secret.Name: GARNET_API_TOKEN · Value: your token from app.garnet.ai → Settings → API Tokens.

Add Garnet to your workflow

name: CI

on:
  push:
    branches: [main]
  pull_request:
    branches: [main]

jobs:
  build:
    runs-on: ubuntu-latest

    permissions:
      contents: read
      pull-requests: write

    steps:
      - uses: actions/checkout@v4

      - name: Garnet Monitor
        uses: garnet-org/action@9e819143e63d6dda04bca2e90ac85e3cf0e5289d # v2
        with:
          api_token: ${{ secrets.GARNET_API_TOKEN }}

      # your existing build, test, and deploy steps continue here

The agent runs in the background and profiles all subsequent steps.

Verify

Push or open a PR. Your run appears at app.garnet.ai within seconds — with a behavioral profile and check results.

Pinning

Floating tags like @v2 can move after you adopt them. For supply-chain hygiene, pin to the commit SHA of the latest release. The canonical SHA is always available at garnet.ai/pins (human-readable) and garnet.ai/pins.txt (machine-readable). Both auto-update when a new release ships.

# Recommended: pinned to release commit SHA
- uses: garnet-org/action@9e819143e63d6dda04bca2e90ac85e3cf0e5289d # v2

# Quick start (floating tag — tracks latest v2.x.x):
- uses: garnet-org/action@v2

Configuration

Input	Description	Required	Default
`api_token`	Garnet API token from app.garnet.ai	Yes	—
`github_token`	GitHub token for PR comments	No	`${{ github.token }}`
`api_url`	Garnet API base URL	No	`https://api.garnet.ai`
`garnetctl_version`	Garnet CLI version (`1.2.3` or `latest`)	No	`latest`
`jibril_version`	Jibril sensor version (`v2.10.8` or `latest`)	No	auto
`debug`	Enable debug mode and upload logs as artifacts	No	`false`

Outputs

Output	Description
`profile_result`	Check result for this run: `pass` or `fail`
`report_url`	Link to the full run report on app.garnet.ai
`agent_id`	Identifier for the Jibril sensor instance that ran

Permissions

Permission	Required	Why
`contents: read`	Yes	Access workflow context and repository metadata
`pull-requests: write`	Recommended	Post the runtime profile as a PR comment

The action does not require contents: write, actions: write, or access to any repository secrets beyond the ones you explicitly pass.

Job Summary

Garnet writes a Runtime Report to the GitHub Actions Job Summary automatically — check results, egress summary, and a link to the full run profile.

Why sudo

Jibril attaches eBPF programs at the kernel level — this requires sudo during install. ubuntu-latest runners include it by default. See Architecture for the safety model.

Troubleshooting

Agent doesn't appear in the dashboard

Verify GARNET_API_TOKEN is set. Check workflow logs for the Garnet step.

Permission denied

Requires sudo for eBPF. ubuntu-latest includes it by default.

No Job Summary

Use the pinned v2 SHA from garnet.ai/pins — the SHA must match the latest release.

No PR comment

Grant pull-requests: write in your workflow’s permissions block. The action uses github_token (defaults to ${{ github.token }}) to post comments.

Debug mode

- uses: garnet-org/action@9e819143e63d6dda04bca2e90ac85e3cf0e5289d # v2
  with:
    api_token: ${{ secrets.GARNET_API_TOKEN }}
    debug: true

​Pinning

​Configuration

​Outputs

​Permissions

​Job Summary

​Why sudo

​Troubleshooting