Github Security scanning of the Python code in the hub-rest-api-python

blackducksoftware / hub-rest-api-python

HUB REST API Python bindings

Apache License 2.0

89 stars 104 forks source link

Github Security scanning of the Python code in the hub-rest-api-python #178

Closed avnes closed 2 years ago

avnes commented 3 years ago

Github Actions workflow for scanning Python code using Github CodeQL.

OffBy0x01 commented 3 years ago

Looks good, thanks for the PR. Personally think this would be a great addition - thoughts @skiyooka @gsnyder2007 ?

skiyooka commented 3 years ago

I am open to scanning this repo. I'll only have cycles to address vulnerabilities in the new Client. As for vulns in HubRestApi I suggest a strategy of triage starting with the highest criticality but no guarantee of what will be addressed.

avnes commented 2 years ago

So anyone that want to review and potentially approve this PR given the positive feedback above?

avnes commented 2 years ago

Who can merge this PR please? (I don't have write access)