You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Setup a vetting working for this repository using vet. This should include creating an appropriate policy, exceptions configuration and a Github action that runs on PR to identify issues
The text was updated successfully, but these errors were encountered:
vet is a tool for identifying risks in open source software supply chain. It helps engineering and security teams to identify potential issues in their open source dependencies and evaluate them against organizational policies.
The purpose of this issue is to use vet to safe guard against risky dependencies being used in vet. For this, I would consider:
Scan vet source code (this repository) with vet (You can ignore docs/)
Create an appropriate filter suite or just re-use one from ./samples
Verify if there are policy failures (--filter-fail while scanning)
Setup a vetting working for this repository using
vet
. This should include creating an appropriate policy, exceptions configuration and a Github action that runs on PR to identify issuesThe text was updated successfully, but these errors were encountered: