mindersec/minder-rules-and-profiles

A repository containing Minder rules and profiles recommended by your friends at Stacklok

GoApache-2.0

Issues

The dockerfile no latest tag rule does not support dockerfiles in places other than the root directory
#102 opened 8 months ago by jhrozek
1
No remediation support for branch_protection_require_signatures
#76 opened 2 months ago by rdimitrov
1
No profile status update for "allowed_selected_actions"
#79 opened 9 months ago by teodor-yanev
0
Fix "no open security advisories" rule
#74 opened 9 months ago by teodor-yanev
1
Fix actions_check_pinned_tags to work if `exclude` is omitted
#70 opened 9 months ago by rdimitrov
0
Trusty rule type should support rust and java
#67 opened 9 months ago by ethomson
2
The automatic_branch_deletion ruletype doesn't work properly
#66 opened 9 months ago by rdimitrov
1
Implement checking if the workflow that built the artifact is part of the allowed list
#124 opened 2 months ago by rdimitrov
2
Add a remediation for the no_pull_request_target rule
#201 opened 2 months ago by jhrozek
0
Remove the required field from the schema for ruletypes that can automatically guess the default branch for a repo.
#178 opened 2 months ago by rdimitrov
4
Add a CI job for validating ruletype upgrade compatibility
#196 opened 2 months ago by rdimitrov
1
Trusty rule does not require that an ecosystem is set
#184 opened 3 months ago by eleftherias
0
Create rule which enforces the "Require status checks to pass before merging" branch protection rule in Github
#49 opened a year ago by dmjb
3
RuleType to check for dangerous workflows
#175 opened 6 months ago by puerco
0
Update SECURITY_INSIGHTS.yaml with latest release data
#174 opened 6 months ago by puerco
1
Populate SECURITY_INSIGHTS.yaml from known data
#173 opened 6 months ago by puerco
0
Remove enabled property from rule types
#156 opened 4 months ago by eleftherias
0
Review all ruletypes and select which should be part of the bundle
#138 opened 4 months ago by rdimitrov
0
Update the release phase field in all ruletypes by setting it to the correct value
#143 opened 4 months ago by rdimitrov
1
Add a time filter parameter to the no_open_security_advisories rule type
#24 opened 4 months ago by rdimitrov
1
Make rule guidance more readable by using markdown
#149 opened 4 months ago by eleftherias
0
LICENSE file rule shouldn't have required parameter that can be blank
#155 opened 4 months ago by ethomson
0
Populate display names for all rule types
#144 opened 4 months ago by eleftherias
0
Create rule type for checking LICENSE file for GitLab
#151 opened 4 months ago by JAORMX
0
Create set of rule types that address branch protection rules in GitLab
#152 opened 4 months ago by JAORMX
0
Include enablement for autofix in CodeQL rule type
#150 opened 6 months ago by meganbruce
0
Create a check that ensures all ruletypes have their state properly set
#147 opened 4 months ago by rdimitrov
0
Update all upstream ruletypes by adding the state field and populating it with alpha
#142 opened 4 months ago by blkt
0
No remediation support for branch_protection_enabled
#75 opened 4 months ago by rdimitrov
1
The artifact_attestation_slsa rule type does not work after GH attestations went from beta to GA
#128 opened 5 months ago by jhrozek
0
The artifact signature rule doesn't expose any details about what failed
#103 opened 8 months ago by jhrozek
0
No remediation support for default_workflow_permissions (part of the healthcheck profile)
#77 opened 8 months ago by rdimitrov
0
Handle the repository ecosystems correctly in the CodeQL ruletype - codeql_enabled
#73 opened 9 months ago by rdimitrov
1
Populate the Severity for all rule types
#64 opened 10 months ago by rdimitrov
0
Add a remediation to the actions_check_pinned_tags rule_type
#25 opened a year ago by jhrozek
0
As a Minder user, I'd like a rule that tells me if I'm using a set of allowed GitHub actions
#19 opened a year ago by JAORMX
0