jackdawm
jackdawm
## What was changed Add Github workflow to scan PRs with Semgrep. ## Why? This will eventually be an org-wide required workflow, but Github won't let us have access to...
## What was changed This is the json snippet support gave me, but I added the gradle ignore we had before. ## Why? "Reachability analysis" should make the Mend dependency...
**What changed?** Locking down some images running in Buildkite to prevent container processes from gaining additional privileges. **Why?** Responding to medium findings in Semgrep. Not sure this rises to medium,...
## What was changed Add Github workflow to scan PRs with Semgrep. ## Why? This will eventually be an org-wide required workflow, but Github won't let us have access to...
## What was changed Add Github workflow to scan PRs with Semgrep. ## Why? This will eventually be an org-wide required workflow, but Github won't let us have access to...
## What was changed Add Github workflow to scan PRs with Semgrep. ## Why? This will eventually be an org-wide required workflow, but Github won't let us have access to...
## What was changed Add Semgrep static analysis to the Github workflows. ## Checklist How was this tested: Ran this in other repos and nothing exploded. Continuing the rollout.