ossf/scorecard
1
1
Fork 0
mirror of https://github.com/ossf/scorecard.git synced 2024-09-21 05:57:42 +03:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity
49c0eed3a4
scorecard/checks
History
Martin Costello 49c0eed3a4
🐛 SAST detect new GitHub app slug for CodeQL (#3591) 
* Fix SAST no longer working for CodeQL

The app slug for CodeQL appears to have changed from `github-advanced-security` to `github-code-scanning`, causing the SAST rule to false-negative on commits.

Signed-off-by: martincostello <martin@martincostello.com>

* Fix lint warning

Fix lint warning.

Signed-off-by: martincostello <martin@martincostello.com>

---------

Signed-off-by: martincostello <martin@martincostello.com>
2023-10-20 14:13:08 -07:00
..
evaluation Add additional fuzzing probes (#3473) 2023-10-09 22:41:58 +00:00
fileparser 🌱 Bump github.com/rhysd/actionlint from 1.6.15 to 1.6.26 (#3489) 2023-10-02 14:21:40 -07:00
raw Add fast-check test runners integrations (#3568) 2023-10-19 18:41:28 +00:00
testdata broaden job matcher for semantic release (#3506) 2023-10-03 18:27:26 -07:00
all_checks_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
all_checks.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
binary_artifact_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
binary_artifact.go Support Binary-Artifacts check again for local repos (#3415) 2023-08-23 10:25:26 -07:00
branch_protection_test.go Move "EnforcesAdmins" to tier 5 Branch-Protection (#3502) 2023-09-25 15:10:23 -04:00
branch_protection.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
ci_tests_test.go 🐛 Fix typo in CITests runtime errors causing duplicate Code-Review checks. (#2756) 2023-03-15 12:55:53 -07:00
ci_tests.go 🐛 Fix typo in CITests runtime errors causing duplicate Code-Review checks. (#2756) 2023-03-15 12:55:53 -07:00
cii_best_practices_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
cii_best_practices.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
code_review_test.go 🐛 Code Review: Use proportional scoring (#2882) 2023-06-14 15:13:20 +00:00
code_review.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
contributors_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
contributors.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
dangerous_workflow.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
dependency_update_tool_test.go checks/evaluation logs findings (#3409) 2023-09-12 15:28:06 +00:00
dependency_update_tool.go checks/evaluation logs findings (#3409) 2023-09-12 15:28:06 +00:00
errors.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
fuzzing_test.go Add additional fuzzing probes (#3473) 2023-10-09 22:41:58 +00:00
fuzzing.go checks/evaluation logs findings (#3409) 2023-09-12 15:28:06 +00:00
license_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
license.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
maintained_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
maintained.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
packaging.go Enable gitlab Packaging Reporting (#2941) 2023-05-08 10:20:12 -07:00
permissions_test.go broaden job matcher for semantic release (#3506) 2023-10-03 18:27:26 -07:00
permissions.go Structured results for permissions (#2584) 2023-01-30 18:41:36 -08:00
pinned_dependencies.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
probes.go checks/evaluation logs findings (#3409) 2023-09-12 15:28:06 +00:00
sast_test.go 🐛 SAST detect new GitHub app slug for CodeQL (#3591) 2023-10-20 14:13:08 -07:00
sast.go 🐛 SAST detect new GitHub app slug for CodeQL (#3591) 2023-10-20 14:13:08 -07:00
security_policy_test.go [experimental] Probe support for security policy check (#3241) 2023-08-04 04:52:15 +00:00
security_policy.go checks/evaluation logs findings (#3409) 2023-09-12 15:28:06 +00:00
signed_releases_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
signed_releases.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
vulnerabilities_test.go ⚠️ OSV scanner integration (#2509) 2022-12-12 16:46:43 -08:00
vulnerabilities.go ⚠️ OSV scanner integration (#2509) 2022-12-12 16:46:43 -08:00
webhook_test.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
webhook.go Use new project name in Copyright notices (#2505) 2022-12-01 15:08:48 -08:00
write.md Detect fuzzing in Haskell by the presence of property tests. (#2843) 2023-04-12 17:29:29 +00:00