Issues
- 0
Harden GitHub Actions Workflow - automatePR.yml
#2495 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - automatePR.yml
#2487 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - test.yml
#2493 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - scorecards.yml
#2492 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - release.yml
#2491 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - kbanalysis.yml
#2494 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - int.yml
#2490 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - codeql.yml
#2489 opened by stepsecurity-int - 0
Harden GitHub Actions Workflow - code-review.yml
#2488 opened by stepsecurity-int - 0
fails to create PR, but shows no error message
#2486 opened by BenWibking - 7
Bug: PR creation fails without message
#2445 opened by jasonkarns - 1
Update permissions for scorecard workflow template
#2483 opened by varunsh-coder - 1
Do not set permissions for jobs with GITHUB_TOKEN in job level env variable
#2479 opened by varunsh-coder - 1
Don't add harden-runner to jobs running on Windows
#2471 opened by tippmar-nr - 0
Please add `gradle/actions/setup-gradle` and `gradle/actions/wrapper-validation` to the knowledge base
#2468 opened by sschuberth - 2
Update workflow templates to the latest versions
#2120 opened by ashishkurmi - 2
Duplicate Harden Runner
#2401 opened by konstruktoid - 3
.pre-commit-config.yaml is not valid yaml
#2402 opened by konstruktoid - 2
- 1
No file change in Pull request
#2262 opened by varunsh-coder - 1
Change suggested to add Dependabot config for a subfolder even though that exists already
#2250 opened by afranken - 0
Add actionlint to the pre-commit config file
#2232 opened by varunsh-coder - 1
- 0
- 5
Add pre-commit hooks to catch linting issues and prevent credential leaks
#2069 opened by varunsh-coder - 1
Transform GitHub Actions Workflows to Use OIDC Instead of Long-lived Credentials
#2032 opened by varunsh-coder - 0
Orchestrate a workflow for super-linter
#2162 opened by varunsh-coder - 2
Dashboard Access Request
#2094 opened by UlisesGascon - 2
Increment actions permissions to knowledge-base
#2011 opened by gabibguti - 2
Ensure pinned dependencies
#2150 opened by sozercan - 2
Update message when adding harden runner
#2056 opened by varunsh-coder - 4
An issue with yaml format on dependantbot.yml generated
#2139 opened by fperezel - 1
issue with quotations when pinning actions
#2109 opened by sozercan - 1
Secure-by-default templates
#2074 opened by varunsh-coder - 4
Replace tag if already exists when pinning Action
#2064 opened by varunsh-coder - 1
Incorrect suggestion to add `step-security/harden-runner` to a container-based job
#2073 opened by ericcornelissen - 0
- 1
Idea: Backstage Plugin
#2085 opened by regicsolutions - 1
`cpp` language not being added to CodeQL workflows
#2016 opened by varunsh-coder - 0
Add SECURITY.md file if missing
#2072 opened by varunsh-coder - 0
- 0
Create PR to set block list for harden-runner
#2062 opened by varunsh-coder - 0
- 0
Transform GitHub Actions Workflows to Generate SBOM (Software Bill of Materials)
#2033 opened by varunsh-coder - 0
- 0
- 3
Docker fix fails when tag not specified for image
#1932 opened by varunsh-coder - 3
Docker image is pinned when already pinned
#1954 opened by varunsh-coder - 2
- 1