Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / boostsecurityio/poutine issues and pull requests
#66 - fix: ensure CLI args don't equal to legacyFlag
Pull Request -
State: closed - Opened by becojo 9 months ago
#65 - load additional Rego files
Pull Request -
State: closed - Opened by becojo 9 months ago
#65 - load additional Rego files
Pull Request -
State: closed - Opened by becojo 9 months ago
#64 - [Breaking Changes] Switch to Use Cobra/Viper for CLI and Config Handling
Pull Request -
State: closed - Opened by SUSTAPLE117 9 months ago
#64 - [Breaking Changes] Switch to Use Cobra/Viper for CLI and Config Handling
Pull Request -
State: closed - Opened by SUSTAPLE117 9 months ago
#63 - Some workflows refer to actions using relative paths in another repo (i.e. Microsoft)
Issue -
State: open - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#63 - Some workflows refer to actions using relative paths in another repo (i.e. Microsoft)
Issue -
State: open - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#62 - add github actions `attestations` scope to write-all
Pull Request -
State: closed - Opened by becojo 9 months ago
#62 - add github actions `attestations` scope to write-all
Pull Request -
State: closed - Opened by becojo 9 months ago
#61 - add cli flag for the configuration file path
Pull Request -
State: closed - Opened by becojo 9 months ago
#61 - add cli flag for the configuration file path
Pull Request -
State: closed - Opened by becojo 9 months ago
#60 - Opa config
Pull Request -
State: closed - Opened by becojo 9 months ago
#60 - Opa config
Pull Request -
State: closed - Opened by becojo 9 months ago
#59 - add debug logs on workflow parsing errors
Pull Request -
State: closed - Opened by becojo 9 months ago
#59 - add debug logs on workflow parsing errors
Pull Request -
State: closed - Opened by becojo 9 months ago
#58 - fix: semver.constraint_check
Pull Request -
State: closed - Opened by becojo 9 months ago
#58 - fix: semver.constraint_check
Pull Request -
State: closed - Opened by becojo 9 months ago
#57 - known_vulnerability semver matching issue
Issue -
State: open - Opened by becojo 9 months ago
- 1 comment
#57 - known_vulnerability semver matching issue
Issue -
State: open - Opened by becojo 9 months ago
- 1 comment
#56 - fix: github actions handle string environment name
Pull Request -
State: closed - Opened by becojo 9 months ago
#55 - Allow rule engine to be configurable with parameters
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#55 - Allow rule engine to be configurable with parameters
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#54 - Add GitHub Actions debug var detection debug_enabled rule
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
#54 - Add GitHub Actions debug var detection debug_enabled rule
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
#53 - Fill the gap between poutine and semgrep rules
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 4 comments
#53 - Fill the gap between poutine and semgrep rules
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 4 comments
#52 - Enable / Disable + configurable rules
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#52 - Enable / Disable + configurable rules
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#51 - Improve CLI args parsing (consider library like cobra)
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
#51 - Improve CLI args parsing (consider library like cobra)
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
#50 - Output SBOM
Issue -
State: open - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#50 - Output SBOM
Issue -
State: open - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#49 - Create workflow_run vulnerable example in messypoutine
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#49 - Create workflow_run vulnerable example in messypoutine
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
- 1 comment
#48 - Bump github.com/open-policy-agent/opa from 0.63.0 to 0.64.1
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, go
#48 - Bump github.com/open-policy-agent/opa from 0.63.0 to 0.64.1
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, go
#47 - Bump github.com/xanzy/go-gitlab from 0.100.0 to 0.103.0
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
- 1 comment
Labels: dependencies, go
#47 - Bump github.com/xanzy/go-gitlab from 0.100.0 to 0.103.0
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
- 1 comment
Labels: dependencies, go
#46 - Bump actions/upload-artifact from 3.1.3 to 4.3.3
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#46 - Bump actions/upload-artifact from 3.1.3 to 4.3.3
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#45 - Bump github/codeql-action from 2.24.10 to 3.25.3
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#45 - Bump github/codeql-action from 2.24.10 to 3.25.3
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#44 - Bump step-security/harden-runner from 2.7.0 to 2.7.1
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#44 - Bump step-security/harden-runner from 2.7.0 to 2.7.1
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#43 - Bump actions/dependency-review-action from 2.5.1 to 4.3.2
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#43 - Bump actions/dependency-review-action from 2.5.1 to 4.3.2
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#42 - Bump actions/checkout from 4.1.1 to 4.1.4
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#42 - Bump actions/checkout from 4.1.1 to 4.1.4
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#41 - Filter forks
Issue -
State: closed - Opened by fgreinacher 9 months ago
#41 - Filter forks
Issue -
State: closed - Opened by fgreinacher 9 months ago
#40 - Acknowledge findings
Issue -
State: open - Opened by fgreinacher 9 months ago
#40 - Acknowledge findings
Issue -
State: open - Opened by fgreinacher 9 months ago
#39 - Add Version Command
Pull Request -
State: closed - Opened by SUSTAPLE117 9 months ago
#39 - Add Version Command
Pull Request -
State: closed - Opened by SUSTAPLE117 9 months ago
#38 - Add a way to check version of poutine with --version or similar
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
#38 - Add a way to check version of poutine with --version or similar
Issue -
State: closed - Opened by fproulx-boostsecurity 9 months ago
#37 - Fix Analyze Local Requires Internet
Pull Request -
State: closed - Opened by SUSTAPLE117 9 months ago
#37 - Fix Analyze Local Requires Internet
Pull Request -
State: closed - Opened by SUSTAPLE117 9 months ago
#36 - add reusable workflows to the build inventory
Pull Request -
State: closed - Opened by becojo 9 months ago
#36 - add reusable workflows to the build inventory
Pull Request -
State: closed - Opened by becojo 9 months ago
#35 - Publish GitHub Action for poutine to Marketplace
Issue -
State: closed - Opened by fproulx-boostsecurity 10 months ago
- 1 comment
#34 - analyze_local requires internet
Issue -
State: closed - Opened by becojo 10 months ago
- 1 comment
#33 - Add OSSF Scorecard + Best Practices badges
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#33 - Add OSSF Scorecard + Best Practices badges
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#32 - Improving OSSF Scorecard score - Part 1
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#32 - Improving OSSF Scorecard score - Part 1
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#31 - chore: add TestJobUsesSelfHostedRunner
Pull Request -
State: closed - Opened by becojo 10 months ago
#31 - chore: add TestJobUsesSelfHostedRunner
Pull Request -
State: closed - Opened by becojo 10 months ago
#30 - Add rego tests with opa
Issue -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#30 - Add rego tests with opa
Issue -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#29 - adjust self-hosted runner regex
Pull Request -
State: closed - Opened by becojo 10 months ago
- 1 comment
#28 - Update README.md to include our own GitHub Action
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#27 - adjust sarif for github code scanning alerts
Pull Request -
State: closed - Opened by becojo 10 months ago
#26 - fix untrusted_checkout_exec line numbers
Pull Request -
State: closed - Opened by becojo 10 months ago
#25 - Remove in-repo GitHub Action
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#24 - Update action.yml
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#23 - add docs module and add documentation to SARIF
Pull Request -
State: closed - Opened by becojo 10 months ago
#22 - Docker login using Bash to allow cosign signature push to OCI
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#21 - Setup Docker (OCI) registry login to allow cosign to push signatures
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#20 - Update cosign installer to get latest cosign v2.2.4
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#19 - Add badges to README
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#18 - Update scorecards.yml
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#17 - output the rule severity in pretty print
Pull Request -
State: closed - Opened by becojo 10 months ago
#16 - PR runs on self-hosted runner appears to have false positives
Issue -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#15 - report closer line numbers
Pull Request -
State: closed - Opened by becojo 10 months ago
#14 - Add GitHub Action and self-test
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
- 2 comments
#13 - fix typos in README
Pull Request -
State: closed - Opened by scott-boost 10 months ago
#12 - fix typos in README
Pull Request -
State: closed - Opened by scott-boost 10 months ago
#11 - [StepSecurity] Apply security best practices
Pull Request -
State: closed - Opened by step-security-bot 10 months ago
- 1 comment
#10 - Make sure goreleaser uses cosign to sign images
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#9 - Goreleaser does not support well pull request for tap
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#8 - Update .goreleaser.yaml
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#7 - Update for goreleaser usage
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago
#6 - Bump golang.org/x/sync from 0.6.0 to 0.7.0
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go
#5 - Bump golang.org/x/oauth2 from 0.17.0 to 0.19.0
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go
#4 - Bump github.com/xanzy/go-gitlab from 0.100.0 to 0.102.0
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
- 1 comment
Labels: dependencies, go
#3 - Bump actions/checkout from 4.1.1 to 4.1.2
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, github_actions
#2 - Bump actions/create-github-app-token from 1.9.0 to 1.9.3
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, github_actions
#1 - Open Source
Pull Request -
State: closed - Opened by fproulx-boostsecurity 10 months ago