rules_pkg icon indicating copy to clipboard operation
rules_pkg copied to clipboard
verified publisher icon bazelbuild

Update the scorecard dependencies a little higher (again)

Open aiuto opened this issue 1 year ago • 4 comments

Yun. What do you think about a recommendation that all bazelbuild repositories copy this workflow directly from bazel?

aiuto avatar Apr 02 '24 17:04 aiuto

Yes, I think this makes sense, and should probably be added to https://docs.google.com/document/d/1L1JFgjpZ7SrBinb24DC_5nTIELeYDacikcme-YcA7xs/edit#heading=h.5kq5q3o81vg9

meteorcloudy avatar Apr 03 '24 12:04 meteorcloudy

Yes, I think this makes sense, and should probably be added to https://docs.google.com/document/d/1L1JFgjpZ7SrBinb24DC_5nTIELeYDacikcme-YcA7xs/edit#heading=h.5kq5q3o81vg9

Suggestion added in the doc

aiuto avatar Apr 03 '24 14:04 aiuto

I copied all the dependencies from bazel. I can't use that scorecard.yml directly because of diffs like the branch name and run frequency.

aiuto avatar Apr 04 '24 14:04 aiuto

Github is wedge. The conversation is resolved, but the merge is still blocked.

aiuto avatar Apr 16 '24 02:04 aiuto