Troubleshooting
This guide helps you resolve common issues when using Bullfrog in your GitHub Actions workflows.
Reviewing Blocked Connections
When connections are blocked or logged, you can view them in the workflow summary.
How to Access the Workflow Summary
- Navigate to your workflow run in GitHub Actions
- Select the Summary section
- Look for the Bullfrog Results in each job summary
What You'll See
The summary includes:
- Allowed Connections: Connections that matched your allow list
- Blocked Connections: Connections that were blocked (in block mode)
- Unauthorized Connections: Connections that would be blocked (in audit mode)
Each entry shows:
- Timestamp
- Destination IP address and port
- Domain name (if available)
- Protocol (TCP/UDP/DNS)
- Decision
- Reason for the decision
- Process metadata (executable path, command arguments)
Issue: Wildcard Not Working
Symptoms:
- Added
*.example.combutexample.comstill blocked - Subdomains still being blocked
Causes:
- Wildcards don't match the base domain
- Incorrect wildcard syntax
Solutions:
Add both base domain and wildcard:
allowed-domains: |
example.com # Base domain
*.example.com # Subdomains
Issue: Bullfrog Not Running
Symptoms:
- The bullfrog step is failing with an error
- No Bullfrog output in logs
- Connections not being monitored
Causes:
- Bullfrog not added as first step
- Using unsupported runner (Windows/macOS)
- Using container job
Solutions:
- Ensure Bullfrog is first step:
steps:
- uses: bullfrogsec/bullfrog@c8e5fff94e0050c0cef9b9596c55cf3d9c53ba2c # v0.9.2
- uses: actions/checkout@v4 # Other steps after
- Verify runner OS:
runs-on: ubuntu-latest # ✅ Supported
# runs-on: windows-latest # ❌ Not supported
- Check you're not using container jobs:
jobs:
build:
runs-on: ubuntu-latest
# container: node:18 # ❌ Remove this
Community Support
- Slack: Join our Reddit community
- GitHub Issues: Report bugs or ask questions
Next Steps
- Review limitations for known constraints
- See configuration reference for all options
- Check out use cases for examples