I'm using the above for scanning on the UDAP Client - Spring Boot code before submitting a PR to the udap.org repo.
Joseph Shook
unread,
Mar 20, 2023, 5:42:17 PM3/20/23
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to UDAP
I have lit up the following in my fork as well
Security advisories
Private vulnerability reporting
Dependabot alerts
Code scanning alerts
Secret scanning alerts
I am glad you mentioned this. Because as I looked around I noticed my Dependabot alerts are turned off because I hadn't been addressing them. At least Github thought I wasn't I would get many updates due to minor version updates in groups of 10 (my limit) Then I would just pull all of them in localy and commit. The PRs would go away automatically. I consider that an interaction but Github did not. So something to keep an eye on.