Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

More OpenSSF suggestions #565

Open
donkirkby opened this issue Sep 22, 2023 · 2 comments
Open

More OpenSSF suggestions #565

donkirkby opened this issue Sep 22, 2023 · 2 comments
Milestone
Near future

Comments

@donkirkby
Copy link
Owner

We fixed some of the OpenSSF complaints about the project in #535, although their scoring has gotten stricter and we now have 4.6/10. Look at some more of the suggestions, and try to improve the project.

First thing to consider is improving the fuzz testing, via issues #541 and #540.
@donkirkby donkirkby added this to the 4.11 milestone Sep 22, 2023
donkirkby added a commit that referenced this issue Oct 4, 2023
@donkirkby
Remove CodeQL config, before switching to default.
7138de9 
Part of #565.
donkirkby added a commit that referenced this issue Oct 4, 2023
@donkirkby
Remove a test file with a syntax error.
7050e9f 
It works for the test, but confuses CodeQL. Replaced it with a literal string.
Part of #565.
@donkirkby
Copy link
Owner Author

Next possibility: pin GitHub actions by hash.

@donkirkby
Copy link
Owner Author

GitHub actions pinned as part of 4.11.

@donkirkby donkirkby modified the milestones: 4.11, Near future Oct 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
Near future
Development

No branches or pull requests
1 participant
@donkirkby