Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add CII shield and harden CodeQL #71

Merged
merged 4 commits into from
Apr 26, 2022
Merged

Add CII shield and harden CodeQL #71

merged 4 commits into from
Apr 26, 2022

Conversation

felddy
Copy link
Owner

@felddy felddy commented Apr 26, 2022
edited
Loading

🗣 Description

  • Add the CII Best Practices shield to the README.
  • Harden the CodeQL workflow.

💭 Motivation and Context

See: https://github.com/ossf/scorecard

CodeQL softness was one of the findings of the new workflow.

This is the way.

🧪 Testing

CI, GitHub actions

✅ Checklist

  • This PR has an informative and human-readable title.
  • Changes are limited to a single goal - eschew scope creep!
  • All relevant type-of-change labels have been added.
  • I have read the CONTRIBUTING document.
  • These code changes follow project standards.
  • All relevant repo and/or project documentation has been updated to reflect
    the changes in this PR.
  • Tests have been added to cover the changes in this PR.
  • All new and existing tests pass.

@felddy felddy self-assigned this Apr 26, 2022
@felddy felddy changed the title Add CII shield Add CII shield and harden CodeQL Apr 26, 2022
@felddy felddy merged commit 17889a5 into develop Apr 26, 2022
@felddy felddy deleted the improvement/cii_shield branch April 26, 2022 03:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@felddy felddy

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@felddy