An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
718
stars
62
forks
source link
Using the json output is missing information about the repository #90
Closed
krol3 closed 2 years ago
Using the json output:
chain-bench scan -r $repo --access-token ${GITHUB_AUTH_TOKEN} -o my.json
The result don't have any information about the repository URL.