Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: add openssf scanning #1825

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

ci: add openssf scanning #1825

wants to merge 1 commit into from

Conversation

Abhinandan-Purkait
Copy link
Member

@Abhinandan-Purkait Abhinandan-Purkait commented Feb 27, 2025
edited
Loading

@Abhinandan-Purkait Abhinandan-Purkait requested review from a team as code owners February 27, 2025 07:16
tiagolobocastro
tiagolobocastro approved these changes Feb 27, 2025
View reviewed changes
.github/workflows/scorecard.yml
push:
branches: [ "develop" ]

# Declare default permissions as read only.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should also do this for other actions

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah possibly.

.github/workflows/scorecard.yml Outdated
# - you want to enable the Branch-Protection check on a *public* repository, or
# - you are installing Scorecard on a *private* repository
# To create the PAT, follow the steps in https://github.com/ossf/scorecard-action?tab=readme-ov-file#authentication-with-fine-grained-pat-optional.
# repo_token: ${{ secrets.SCORECARD_TOKEN }}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we do this for the branch-protection check?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Right we should do that.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done.

@Abhinandan-Purkait
ci: add openssf scanning
20cd408 
Signed-off-by: Abhinandan Purkait <purkaitabhinandan@gmail.com>
@Abhinandan-Purkait Abhinandan-Purkait force-pushed the Abhinandan-Purkait-patch-1 branch from 71da329 to 20cd408 Compare February 27, 2025 11:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tiagolobocastro tiagolobocastro tiagolobocastro approved these changes

@abhilashshetty04 abhilashshetty04 Awaiting requested review from abhilashshetty04

@dsharma-dc dsharma-dc Awaiting requested review from dsharma-dc

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Abhinandan-Purkait @tiagolobocastro