Use Static Application Security Testing for All Commits
tip
This check is currently under development and not yet implemented. Click here to learn how you can help.
Description
Ensure all commits are scanned by a static application security testing tool
Details
- Default Category: code quality
- Default Priority Group: P6
- C-SCRM: false
- Mitre: CWE-1076
- Mitre: CWE-1078
- Mitre: M1016
- Sources: OWASP SCVS L1 6.6 OpenSSF Scorecard
- Sources: OpenSSF Best Practices Badge Gold Level (static_analysis_common_vulnerabilities)
- Sources: OpenSSF Best Practices Badge Gold Level (test_continuous_integration)
- How To: CodeQL Docs