Exit codes
| Code | Meaning |
|---|---|
0 | Pass, or warn without --strict |
1 | Fail — at least one high-severity finding (or warn with --strict) |
2 | Config / usage error — invalid YAML, missing required env, connector failure |
Fail-closed
Exit 2 on missing credentials for access checks — never exit 0 when evaluation was skipped.
GitHub Action
Action fails the job when CLI would exit 1 (or 2 for config errors).
CI tips
npx prodverdict check access --strict # treat warn as fail