search

istio-ecosystem / authservice

Move OIDC token acquisition out of your app code and into the Istio mesh
Apache License 2.0
220 stars 62 forks source link

Configure nightly vulnerability scans and report upload #245

Closed nacx closed 7 months ago

nacx commented 7 months ago

Configures the scan action to run nightly and to upload the findings to the security advisory page. This will give proper visibility for any CVEs that may affect the project and help get them fixed.

codecov-commenter commented 7 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

:exclamation: No coverage uploaded for pull request base (main@f476d17). Click here to learn what that means.

:exclamation: Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #245 +/- ## ======================================= Coverage ? 92.61% ======================================= Files ? 23 Lines ? 1530 Branches ? 0 ======================================= Hits ? 1417 Misses ? 69 Partials ? 44 ```
istio-testing commented 7 months ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: nacx, sergicastro

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/istio-ecosystem/authservice/blob/main/OWNERS)~~ [nacx] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment