New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add jenkins-security-scan template #68
Add jenkins-security-scan template #68
Conversation
Could you add this to a repo and show what it looks like? This sounds really cool in general nice work 😄 . |
There's a screenshot from my test org, or WDYM? Otherwise it's just another action and the findings are the same as in |
I mean of an app using this action, does it report it as check annotations / a check result? Or just in the security section of the repo. I didn't mean of what the workflow-template looks like, the action itself |
Both. These are repos currently getting branches and PRs checked, so you can see the checks on open PRs, and the Security section has findings for the default branch. |
It goes green with new issues? =/ Can't say I would ever see that in 17 other checks |
Interesting. Since I'm not setting any check results (this is GitHub itself based on uploads of complete scans of both the target branch and the PR), I have no control over that. The first screenshot here indicates this is expected behavior. I'll try to get help from GH. Would you consider this a blocker, or something we'll just need to document and done? |
Not a blocker at all just a bit of poor UX that would be great to improve |
Looks like it's intentional:
This one is just a |
If you're curious, these are the repos being used:
Screenshot: