Closed sunstonesecure-robert closed 3 months ago
@lj365 can you take a look?
The https://github.com/orgs/openfga/security/risk is only available to certain users. It's not a "true" 404, its permission issues.
For the Snyk monitoring badge, indeed, Snyk doesn't support Go as of now for public repositories (https://support.snyk.io/hc/en-us/articles/360003997277-Badge-Support-for-Repositories).
Although, it is being scanned as part of the Cloud Native Foundation Snyk Group
@lj365 thanks! well at least it looks nice ;) for practical purposes - would it be possible to arrange to send a copy of the latest report out to the TSSA reviewers for review? (or to me directly and I can distribute to them) - thanks!
Looks like this is working as designed =)
Please consider either removing the link as it's not meant to be public so people don't have issues accessing it or as @sunstonesecure-robert recommended to share a copy of the contents.