CI/CD Integration for API Testing

Run Keploy API tests in any CI/CD pipeline — Woodpecker, GitLab CI, Jenkins, CircleCI, Drone. Gate pull requests on deterministic replay results, cache captured artifacts between runs, and alert to Slack or Discord when tests fail. No SDK, no proxy, no application code changes — Keploy captures at the kernel level with eBPF.

This guide covers the exact pipeline files for each major CI system, the pattern for gating pull requests on test results, and how to integrate failure alerts into your team chat.

Woodpecker pipeline

Drop this file into .woodpecker.yml at the repo root. It runs on every pull request and on pushes to main, installs Keploy via the one-line installer, builds the application, replays the committed keploy/ test fixtures, and uploads the test report to S3 via the Woodpecker S3 plugin. Keploy's own infrastructure runs on Woodpecker — this config is the one we use internally.

# .woodpecker.yml
# Install, build, and replay run in a single step because each
# Woodpecker step launches its own container and binaries do not
# persist across steps.
when:
  - event: pull_request
  - event: push
    branch: main

steps:
  keploy-replay:
    image: ubuntu:22.04
    commands:
      - apt-get update && apt-get install -y curl golang-go
      - curl -fsSL https://keploy.io/install.sh | bash
      - go build -o ./app ./cmd/server
      - keploy test -c "./app" --delay 10

  upload-report:
    image: woodpeckerci/plugin-s3
    settings:
      bucket: keploy-ci-reports
      source: keploy/reports/
      target: /${CI_REPO}/${CI_COMMIT_SHA}/
    when:
      status: [success, failure]

To gate PRs on the Keploy step, mark keploy-replay as a required status check in the Woodpecker admin UI or equivalent repository host protection rule. Non-zero exit codes from keploy test will now block merges.

GitLab CI pipeline

The GitLab equivalent uses the same phases (install → build → test → report) but hooks into GitLab's native JUnit report ingestion so test results appear directly in the MR widget.

# .gitlab-ci.yml
keploy-tests:
  stage: test
  image: ubuntu:22.04
  before_script:
    - apt-get update && apt-get install -y curl golang-go
    - curl -fsSL https://keploy.io/install.sh | bash
    - go build -o ./app ./cmd/server
  script:
    - keploy test -c "./app" --delay 10
  artifacts:
    when: always
    paths:
      - keploy/reports/
    reports:
      junit: keploy/reports/junit.xml
  rules:
    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH

To gate merge requests, enable "Pipelines must succeed" in Settings → Merge requests. Keploy's JUnit output is rendered in the MR widget under the "Test summary" tab so reviewers see individual failing assertions without leaving GitLab.

Jenkins declarative pipeline

The Jenkins pattern uses a declarative pipeline with a Slack notification step in the failure post-hook. Requires the Slack Notification plugin configured with a workspace-level webhook.

// Jenkinsfile
pipeline {
  agent { label 'linux' }
  stages {
    stage('Install Keploy') {
      steps {
        sh 'curl -fsSL https://keploy.io/install.sh | bash'
      }
    }
    stage('Build') {
      steps {
        sh 'go build -o ./app ./cmd/server'
      }
    }
    stage('Keploy Tests') {
      steps {
        sh 'keploy test -c "./app" --delay 10'
      }
    }
  }
  post {
    always {
      archiveArtifacts artifacts: 'keploy/reports/**/*', allowEmptyArchive: true
      junit 'keploy/reports/junit.xml'
    }
    failure {
      slackSend channel: '#qa-alerts',
                color: 'danger',
                message: "Keploy tests failed on ${env.BRANCH_NAME} — ${env.BUILD_URL}"
    }
  }
}

CircleCI, Drone, GitHub Actions

The same three-phase pattern (install → build → test) maps directly onto CircleCI orbs, Drone pipelines, and GitHub Actions workflows. Full example configs for each are in the Keploy docs at /docs/ci-cd. The only substantive difference is how each system exposes caching — CircleCI uses the save_cache / restore_cache commands, Drone uses plugin volumes, and GitHub Actions uses actions/cache.

Caching captured test artifacts

Keploy test fixtures live in the keploy/ directory committed to git, so they are always available from the checkout. What benefits from caching is the install step and any pre-built language runtimes. The cache key should include three signals so cached artifacts are invalidated on any relevant change:

Keploy version (hash of install.sh or pinned binary SHA)
Application dependency lockfile (go.sum, package-lock.json, requirements.txt, Cargo.lock)
keploy.yaml content (so configuration changes invalidate any cached noise rules)

Alerting to Slack and Discord

The Keploy test runner emits a structured JSON summary after each run. Pipe it to a Slack webhook via a post-step hook (or the Jenkins slackSend step shown above) so failed PRs trigger a channel alert. Discord uses the same pattern with a Discord webhook URL. Both integrations are configured via repository secrets and can be scoped to specific branches — the most common setup is to only alert on main or on explicitly labeled PRs to avoid channel noise from in-progress drafts.

Frequently asked questions

Keploy ships a GitHub Action that runs captured test suites on every pull request. The workflow runs in three phases: (1) start your application in record mode inside the runner, (2) replay the committed keploy/ test fixtures against it, (3) post a pass/fail comment on the PR with a diff of any failures. The full workflow file is a 30-line YAML that reuses keploy.yaml from the repo root, so no environment-specific configuration is needed in CI. Failing assertions block the merge.

Yes. Keploy is a single binary with no hosted components required for the test-and-replay phase, so any CI system that can run a Linux container can run Keploy. The pattern is the same across systems: install Keploy via the one-line installer, start the application under test, run `keploy test`, and gate the build on the exit code. Official examples exist for GitLab CI (.gitlab-ci.yml), Jenkins (Jenkinsfile pipeline), CircleCI (.circleci/config.yml), Drone, and Woodpecker.

Commit them alongside application code in a `keploy/` directory at the repository root. Each test case is a YAML file that captures a single HTTP interaction with its dependencies. Keeping tests next to the code they exercise means every PR that changes behavior also changes the fixtures that validate it, making reviewers see both. A separate test repo is an anti-pattern that Keploy specifically avoids because it creates drift between the tests and the service.

Keploy's deterministic replay engine eliminates the root causes of most flakiness before it reaches CI: non-deterministic timestamps, UUIDs, and session tokens are normalized at replay time (see /noise-secret-management for the full mechanism). For the residual flakiness that comes from race conditions in the application itself or from resource contention on runners, Keploy provides retry-with-backoff at the test-runner level and a quarantine mode that marks a test as flaky after N runs without blocking the build.

For most API-heavy services, yes. Keploy generates test cases from captured traffic, which means the test surface grows automatically with application usage — there is no manual test-writing step to maintain. Teams typically keep a small number of hand-written unit tests for pure functions and complex state machines, and move the entire integration-test layer to Keploy. The trade-off is that Keploy tests reflect recorded behavior, so new features need a capture session before the first test runs; greenfield TDD workflows are better served by a hand-written first test plus Keploy for regression.

In GitHub Actions, set the Keploy step as a required check in the branch protection settings for the target branch. The Keploy action exits with a non-zero code on any test failure, which causes the check to fail and blocks the PR from merging. A summary comment is posted back to the PR with a diff of each failing assertion and a link to the captured YAML file. GitLab and Jenkins follow the same pattern with their respective branch protection mechanisms.

Yes. Captured tests are committed to git, so CI runs read them directly from the checkout. For runtime-generated artifacts (mocks, traces, coverage reports), Keploy supports caching via the standard actions/cache step in GitHub Actions or the equivalent in other systems. Cache keys should include the Keploy version, the keploy/ directory hash, and the application dependency lockfile so cached mocks are invalidated when any of those changes.

The GitHub Action emits a structured JSON summary that can be forwarded to any webhook. The most common setup pipes the summary into a Slack webhook step so failed PRs trigger a channel alert with the failing test name and a link to the CI run. For Discord, the pattern is the same with the Discord webhook URL. Both integrations are configured via repository secrets and can be filtered by branch (e.g., only alert on main).

Test with Keploy AI

Get the power of AI to your Testing Pipelines!

Join our GlobalCommunity

Connect with developers worldwide. Follow updates, ask questions, share feedback, and ship faster with other Keploy builders.

0M+installs

0K+GitHub

0K+devs

0M+mocks

0K+contrib...

#0OSS Trending