Closed AdityaKulkarni2024 closed 1 month ago
We use dependabot and mend scan. Mend scan was originally run when the repo was open sourced and has now been enabled to run weekly also.
Closing this as consumer of repository can also run local scans if above is not enough.
I was wondering, since the repo is available to public internet and anyone could download and start using it. just wanted to understand on the vulnerability and malware scan of the code in it. Does Pega have any scanning done already before publishing the code on pegasystems/react-sdk ? If yes, what kind of scans are completed ?