-
SNYK
https://docs.snyk.io/products/snyk-code/cli-for-snyk-code/working-with-the-snyk-code-cli-results/exporting-the-test-results-to-a-json-or-sarif-file
TRIVY
https://aquasecurity.github.io/tri…
-
### Dependency
- [x] #4819 ((this issue needs to be updated with a list of pages missing produced by this issue)
### Overview
We need to make wiki pages for the GHAs that don't yet have them
#…
-
I am trying to run the codeql scan on a azure devops repo, with the steps defined in the official documentation.
Without putting GHAS task inside the yaml file build is successful, as soon as I int…
-
- [ ] Use self hosted runners to scan terraform files
- [ ] Leverage two workflow scripts (one to create full GHAS suite enabled, two setup terraform scanning)
Example - scan terraform file to ensure…
-
Need a low-fi sketch of possible views for GHAS report building
- [ ] List of potential display stats
- [ ] Sketches of interfaces (forms, tables)
-
[Dependency Review](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review) is recommended by the GitHub Advanced Security folk…
-
Would it be possible to provide a second entry point so that `update_deps` can be run on all the environments in `root` without user interaction?
In other words, I would like to use PkgDevTools as …
-
Need to know which Rest and GraphQL endpoints and requests are necessary for GHAS reporting
- [x] Categorized list of all API endpoints
- [ ] Sample request bodies for each endpoint
-
### Is there an existing feature request for this?
- [X] I have searched the existing issues
### Describe the Feature
Our current GHAs that drive releases don't log the various inputs and outputs a…
-
- [ ] makefile uses mamba, no longer needed, need to document enabling the libmamba solver instead?
- [x] "Tip: Tips" in serving gtn tutorial
- [ ] nodeaddrinfo tip box for maxs. `getaddrinfo': geta…