Closed tarebyte closed 1 year ago
I might be biased since I work on the code scanning product, but the first item here sounds good even if we choose to keep Snyk (which I always spell as Synk first time).
This is the recommended way to enable Code Scanning, but it needs a repo admin to do so. Not sure if we want to do this yet or if we'll get a shock because everything's so old. 😂
@issyl0 personally I think it'd be nice to have sooner than later so we know which ones are dependency related and which ones are code fixes we can do outside of the upgrade process.
I've removed Snyk :)
To reduce the number of third party integrations and overhead, we'd like to move from Snyk to GitHub's secuirty feature.