search

stakater / Reloader

A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig – [✩Star] if you're using it!
https://docs.stakater.com/reloader/
Apache License 2.0
7.12k stars 476 forks source link

[ENHANCE] Add a Security Policy on the project and SAST in the CI/CD #693

Open AlxCloudRl opened 2 weeks ago

AlxCloudRl commented 2 weeks ago

Hello,

We are considering using the project inside our company. However, our Security Team asked us do to a review on the project security, using scorecards like https://scorecard.dev/viewer/?uri=github.com/stakater/Reloader and https://deps.dev/go/github.com%2Fstakater%2FReloader

The following seems to be missing:

What do you think about implementing at least the first two mentioned points? It would ease the adoption, especially for companies now taking an interest in supply chain security.

Thanks a lot!

karl-johan-grahn commented 2 weeks ago

Hi, we have a Reloader Enterprise edition that addresses these points, please send an email to sales@stakater.com if you're interested to hear more