Use Workflow Security Scanners
tip
This check is currently under development and not yet implemented. Click here to learn how you can help.
Description
Ensure a workflow security scanner is utilized
Details
- Default Category: github workflows
- Default Priority Group: R2
- C-SCRM: true
- Mitre: M1047
- Sources: OpenSSF Scorecard
- Sources: OpenSSF SCM Best Practices
- How To: Step Security secure-repo