Nosey Parker can enumerate repositories from GitHub given an organization or project name. Currently this only pulls down "regular" repositories. However, there are many additional bits of data that could enumerated and be pulled down for scanning:
Adding support for scanning non-repo content listed above would require some new infrastructure. An obvious approach would be to save the JSON responses from enumerating those resources (issues, comments, etc) to the Nosey Parker datastore's scratch subdirectory.
bradlarsen
commented
9 months ago
Nosey Parker can enumerate repositories from GitHub given an organization or project name. Currently this only pulls down "regular" repositories. However, there are many additional bits of data that could enumerated and be pulled down for scanning:
Adding support for scanning non-repo content listed above would require some new infrastructure. An obvious approach would be to save the JSON responses from enumerating those resources (issues, comments, etc) to the Nosey Parker datastore's
scratchsubdirectory.