Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: [StepSecurity] Apply security best practices #1249

Merged
merged 2 commits into from
May 31, 2024
Merged

ci: [StepSecurity] Apply security best practices #1249

merged 2 commits into from
May 31, 2024

Conversation

step-security-bot
Copy link
Contributor

Summary

This pull request is created by StepSecurity at the request of @rsdmike. Please merge the Pull Request to incorporate the requested changes. Please tag @rsdmike on your message if you have any questions related to the PR.

Security Fixes

Least Privileged GitHub Actions Token Permissions

The GITHUB_TOKEN is an automatically generated secret to make authenticated calls to the GitHub API. GitHub recommends setting minimum token permissions for the GITHUB_TOKEN.

Add Dependency Review Workflow

The Dependency Review Workflow enforces dependency reviews on your pull requests. The action scans for vulnerable versions of dependencies introduced by package version changes in pull requests, and warns you about the associated security vulnerabilities. This gives you better visibility of what's changing in a pull request, and helps prevent vulnerabilities being added to your repository.

Maintain Code Quality with Pre-Commit

Pre-commit is a framework for managing and maintaining multi-language pre-commit hooks. Hooks can be any scripts, code, or binaries that run at any stage of the git workflow. Pre-commit hooks are useful for enforcing code quality, code formatting, and detecting security vulnerabilities.

Feedback

For bug reports, feature requests, and general feedback; please email [email protected]. To create such PRs, please visit https://app.stepsecurity.io/securerepo.

Signed-off-by: StepSecurity Bot [email protected]

@rsdmike rsdmike changed the title [StepSecurity] Apply security best practices ci: [StepSecurity] Apply security best practices May 30, 2024
@codecov Codecov
Copy link

codecov bot commented May 30, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 83.43%. Comparing base (c4981ac) to head (7e0c797).
Report is 164 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #1249   +/-   ##
=======================================
  Coverage   83.43%   83.43%           
=======================================
  Files          12       12           
  Lines         326      326           
  Branches       62       62           
=======================================
  Hits          272      272           
- Misses         46       53    +7     
+ Partials        8        1    -7

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@rsdmike rsdmike enabled auto-merge (rebase) May 30, 2024 23:26
@rsdmike rsdmike merged commit d2ccfa1 into open-amt-cloud-toolkit:main May 31, 2024
7 checks passed
@RosieAMT
Copy link

RosieAMT commented Jun 5, 2024

🎉 This PR is included in version 3.2.6 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rsdmike rsdmike rsdmike approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@step-security-bot @RosieAMT @rsdmike