Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Task] 🛠️ Security: Configure security analysis: Private Vuln Reporting | Dependabot #6

Open
7 of 17 tasks
iPoetDev opened this issue Jul 31, 2024 · 1 comment
Open
7 of 17 tasks

[Task] 🛠️ Security: Configure security analysis: Private Vuln Reporting | Dependabot #6

iPoetDev opened this issue Jul 31, 2024 · 1 comment

Comments

@iPoetDev
Copy link
Owner

iPoetDev commented Jul 31, 2024
edited
Loading

Task Topic

Other

Task Description

Configure repository security and analysis using GitHub Secuirty Settings

Tasks

  • Private vulnerability reporting
  • Dependency graph
  • Automatic dependency submission
  • Dependabot
    • Dependabot alerts
      • Dependabot rules
    • Dependabot security updates
    • Grouped security updates
    • Dependabot version updates
    • Dependabot on Actions runners

Code scanning

Tools

  • CodeQL analysis
  • Other Tools
    • Add any third-party

Protection Rules

  • Security alert severity levels: High or Higher
  • Standard alert severity level: Only Errors

Secret scanning

  • Receive alerts on GitHub for detected secrets, keys, or other tokens.
  • Push protection: Block commits that contain supported secrets

Use Case

Outline: Security and analysis features help keep your repository secure and updated.

  • Enable these features to perform read-only analysis on your repository.

Additional Information
iPoetDev added a commit that referenced this issue Jul 31, 2024
@iPoetDev
chore : (security, config) initialise dependabot
500b870 
branch: main
PREVIOUSLOG 2024.07.29 v.0.2.2-000010
CHANGELOG 2024.07.29 v.0.2.2-000011

- add: .github/ 📂
  - dependabot.yml
    - weekly

- opened: #6 
- resolves:
- see also:
@iPoetDev
Copy link
Owner Author

✅ Initailise Dependabot on a weekly basis

@iPoetDev iPoetDev changed the title [Task] 🛠️ Security: Configure security analysis: Private Vuln Reporting [Task] 🛠️ Security: Configure security analysis: Private Vuln Reporting | Dependabot Jul 31, 2024
iPoetDev added a commit that referenced this issue Aug 18, 2024
@iPoetDev
:WIP: feature|docs: (final-project) Final Project artefacts
15e0753 
branch: final-project
push: See #6, Can not get RFC function to excute. Type Error
CHANGELOG 2024.07.29 v.0.3.2-00001

- add: final-project/
  -  Notebook: Final Project final 2 or 3 tasks

- project: https://github.com/users/iPoetDev/projects/22
  - name: PROJECT: IBM Programme for Artificial Intelligence - Credit Card Fraud

- opened: #6
- resolves:
- see also:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@iPoetDev