-
Notifications
You must be signed in to change notification settings - Fork 402
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Tech debt: Operational Experience review #2203
Comments
Using variables with We've got two options here: 1/ Keep as-is, 2/ Create a hash script ourselves -- WDYT @leandrodamascena ? |
This is now released under 2.18.0 version! |
Still investigating how to satisfy three security alerts in a way that the scanner understands - it doesn't recognize the use of hashed dependencies and locks (e.g., package-lock.json). |
Another bug in scorecard that we're getting penalized at job level permission despite using least privileges: ossf/scorecard#3045 there's a PR in place: ossf/scorecard#3162 |
No luck with continuous fuzzing - most examples are in C, not much in Python. Opened an issue for clarifications: google/clusterfuzzlite#128 The brightside is that it appears to integrate with Hypothesis for mutation testing, which we plan to move to anyway, making it easier to define targets for our large APIs. |
This is now released under 2.20.0 version! |
This is now released under 2.21.0 version! |
This is now released under 2.23.0 version! |
Why is this needed?
There are a few areas left from v1 to v2 we couldn't optimize, namely for now are:
format
built-in function to use constants for hashing foldersWhich area does this relate to?
Other
Suggestion
No response
Acknowledgment
The text was updated successfully, but these errors were encountered: