Open pombredanne opened 9 months ago
@pombredanne what would be the output of this pipeline? Some kind of report? Attaching extra data to the codebase resource? If this pipeline includes various tools, how do we aggregate those various data output?
what would be the output of this pipeline? Some kind of report? Attaching extra data to the codebase resource? If this pipeline includes various tools, how do we aggregate those various data output?
I could envision either of:
Checking for the possible malware in the actual code would be awesome. This will complement the back-to-source binary analysis of software packages.
There are a few nice things we could add to such a pipeline: