Add Dependency Security Checks #21
Comments
|
I'm on board with this 👍. If @adamculpepper wants to make you an admin, I'm good with you getting it set up. |
|
@james-alt At this point, this project is more @ngscheurich's. 😃 |
|
@james-alt permissions updated to Admin level. |
|
Yea, didn't mean to close the issue. @james-alt you should be good to go now. |
|
All good @adamculpepper. I've gone ahead and added Snyk to the project and I'm letting it test. I'll close the issue once the test is done and I've added the super cool badge to our README |
|
It's all about those sweet, sweet badges. |
|
There are a couple of security vulnerabilities listed, but they don't seem to necessarily have a fix for them at the moment. I'll try and add everyone to the group so you can see them. |
More of a discussion point, but what do you think of adding something like Snyk to keep up with the dependencies we are using and especially those we are adding and making sure we aren't using something with a known security vulnerability.
I know it's probably not a real concern, based on the scope of what we are doing, but all in all not a hard thing to do.
I can set this up, but I would need to be made an admin on the repo, otherwise someone else could easily create a free account on their website and add it in.
The text was updated successfully, but these errors were encountered: