search

Workiva / goverge

A golang multi package coverage reporting tool.
Other
3 stars 8 forks source link

RED-2792: initial aviary.yaml #31

Closed jeffreymelvin-wf closed 6 years ago

jeffreymelvin-wf commented 6 years ago

Aviary is the InfoSec code scanner which operates on all PRs submitted to Workiva repositories, applying "Security Review Required" or "InfoSec Review Required" labels as necessary. Aviary is configured by way of aviary.yaml files in the root directory of repositories.

The default Aviary options should be sufficient for this repository, so this file is mostly blank. This PR does not invoke a behavior change, but rather documents that this repository has been reviewed and that the decision to use Aviary's default options is a conscious one. Should security-sensitive code be added in the future, please update this file as described here.

@wesleybalvanz-wf @aldenpeterson-wf @seangerhardt-wf @Workiva/infosec-reviewers-p

aviary-wf commented 6 years ago

Security Insights

The items listed below may not capture all security relevant changes. Before providing a security review, be sure to review the entire PR for security impact.

PR and Jira ticket analysis indicate this PR has security relevant changes.

(1) Security relevant changes were detected
  • Watched file aviary.yaml added

    • Action Items

    codecov-io commented 6 years ago

    Codecov Report

    Merging #31 into master will not change coverage. The diff coverage is n/a.

    Impacted file tree graph

    @@           Coverage Diff           @@
##           master      #31   +/-   ##
=======================================
  Coverage   89.85%   89.85%           
=======================================
  Files           7        7           
  Lines         335      335           
  Branches       30       30           
=======================================
  Hits          301      301           
  Misses         29       29           
  Partials        5        5

    Continue to review full report at Codecov.

    Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update ecd944f...d259fc6. Read the comment docs.

    oliverjensen-wk commented 6 years ago

    security +1

    wesleybalvanz-wf commented 6 years ago

    +1