-
-
### Enhancement Request
Is it possible to configure Speed Dial through FCLI or some way to set scan arguments?
We need to use Through FLCI:
Security focused Scan Policy:
This scan policy o…
-
Our OpenSSF score is at 7.2/10. We should implement changes to make this as close to 10 as possible.
egibs updated
2 weeks ago
-
See:
- https://docs.gitlab.com/ee/user/application_security/sast/index.html#overview
- https://gitlab.com/mintel/appsec/sastconvertor/
We're starting to integrate SAST into gitlab-ci pipelines, b…
-
**Describe the bug**
Release 0.4.5 is failing on getting the ruleset java-best-practices
**To Reproduce**
Steps to reproduce the behavior:
Add this stage to `.gitlab-ci.yml` in a node application.
`…
-
### Current Behavior
At least the `fcli fod sast-scan setup` but possibly also some of the `setup` commands for other scan types don't have proper default table output columns configured, resulting…
-
# Code Security Report
### Scan Metadata
**Latest Scan:** 2024-08-29 12:37am
**Total Findings:** 4 | **New Findings:** 2 | **Resolved Findings:** 5
**Tested Project Files:** 19
**Detected Programmi…
-
В целом можно и на локалке настроить Snyk, но желательно все добавить в CI
-
From our Slack channel:
> Just for giggles I ran our SAST on WebGoat and it found some vulnerabilities (yeah, shocking, I know) But it occurred to me I don't know if it found *all* the vulnerabilit…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/) and refers to [jeffmendoza-test-org/scm-test-repo](https://github.com/jeffmendoza-test-org/scm-test-repo)._
**Secu…