Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement DevSecOps through GitHub's Dependabot and CodeQL #1563

Merged
merged 6 commits into from May 5, 2021
Merged

Implement DevSecOps through GitHub's Dependabot and CodeQL #1563

merged 6 commits into from May 5, 2021

Conversation

aleks-ivanov
Copy link
Contributor

@aleks-ivanov aleks-ivanov commented Feb 25, 2021
edited

Description

  • add security and versioning dependency alerts through GitHub Dependabot (dependabot.yml)
  • add continuous security and quality analysis using GitHub CodeQL (codeql-analysis.yml)
  • add documentation about functionality and setup for both features (docs/CI-CD_DOCUMENTATION folder contains CI-CD_DOCUMENTATION.md and images)

Purpose

This pull request is a:

  • New feature (non-breaking change which adds functionality)

Checklist

  • I have added tests that prove my fix is effective or that my feature works
  • I have added necessary documentation (if appropriate)

Resolves #1560
Resolves #1561

@alexeyzimarev alexeyzimarev merged commit 2b697c4 into restsharp:dev May 5, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add continuous security analysis using GitHub CodeQL Add security and versioning dependency alerts
3 participants
@aleks-ivanov @alexeyzimarev @kulov