Open Daverlo opened 3 years ago
Acknowledged. Those names should be Bandit
and gosec
, so I will file a bug on in the MSCA CLI and get that deployed.
Thank you @davidknise 🙇♀️ ! Is that repo open source? If so would you mind sharing a link to that issue so we can keep track of progress without pestering you too much 😅 Otherwise would you mind keeping us posted on progress?
@davidknise What's the current status? Could you give us an update please? :)
@anaarmas, @Daverlo my apologies for the late response,
Is that repo open source?
It is not.
Otherwise would you mind keeping us posted on progress? What's the current status? Could you give us an update please? :)
I thought we had this scheduled and am surprised to see it hasn't been deployed yet. I will follow up today to ensure it's in our pipeline.
Hi @davidknise, @massto 👋 Does the above message mean this change has already been deployed and we can close this issue?
@davidknise @massto following up on this again - can this issue be closed now?
@davidknise You seem to be the main maintainer of this repo.
Bandit and Gosec are using the name property for outputting a description (
Security audit for python by bandit
andGolang security checks by gosec
).At Github Code Scanning, we use those names for displaying the tool at the Security page. We added some internal logic for handling these special cases and rename them to the tool name, but we are in the process of cleaning up the code and removing it. We suggest using the name property for outputing the tool name (Bandit, and Gosec), and the fullName or short/longDescription properties for storing the current long name.