Closed kenoir closed 5 months ago
In order to improve the security of our services we should have visibility of Dependabot alerts, CodeQL issues, secrets in code and an automated mechanism to raise PRs to remediate vulnerabilities.
See: https://github.com/wellcomecollection/docs/pull/101
This will involve:
See https://github.com/wellcomecollection/scala-steward for part of our scala vulnerability remediation solution.
In order to improve the security of our services we should have visibility of Dependabot alerts, CodeQL issues, secrets in code and an automated mechanism to raise PRs to remediate vulnerabilities.
See: https://github.com/wellcomecollection/docs/pull/101
This will involve: