Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Configure WhiteSource for GitHub.com #986

Merged
merged 1 commit into from
Nov 18, 2021
Merged

Configure WhiteSource for GitHub.com #986

merged 1 commit into from
Nov 18, 2021

Conversation

mend-for-github-com[bot]
Copy link
Contributor

Welcome to WhiteSource for GitHub.com! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities.

🚦 WhiteSource for GitHub.com will start scanning your repository only once you merge this Pull Request. To disable WhiteSource for GitHub.com, simply close this Pull Request.


What to Expect

This PR contains a '.whitesource' configuration file which can be customized to your needs. If no changes were applied to this file, WhiteSource for GitHub.com will use the default configuration.

Before merging this PR, Make sure the Issues tab is enabled. Once you merge this PR, WhiteSource for GitHub.com will scan your repository and create a GitHub Issue for every vulnerability detected in your repository.

If you do not want a GitHub Issue to be created for each detected vulnerability, you can edit the '.whitesource' file and set the 'minSeverityLevel' parameter to 'NONE'.

If WhiteSource Remediate Workflow Rules are set on your repository (from the WhiteSource 'Integrate' tab), WhiteSource will also generate a fix Pull Request for relevant vulnerabilities.


❓ Got questions? Check out WhiteSource for GitHub.com docs.
If you need any further assistance then you can also request help here.

@mend-for-github-com mend-for-github-com bot requested a review from a team as a code owner November 18, 2021 00:56
@codecov-commenter
Copy link

Codecov Report

Merging #986 (e0a3675) into main (a17f679) will decrease coverage by 11.44%.
The diff coverage is n/a.

Impacted file tree graph

@@              Coverage Diff              @@
##               main     #986       +/-   ##
=============================================
- Coverage     93.02%   81.57%   -11.45%     
  Complexity        9        9               
=============================================
  Files            96        7       -89     
  Lines          2423       38     -2385     
  Branches          4        4               
=============================================
- Hits           2254       31     -2223     
+ Misses          164        2      -162     
  Partials          5        5               
Impacted Files Coverage Δ
src/ci_workflow/ci_args.py
src/system/working_directory.py
src/system/temporary_directory.py
src/manifests/manifests.py
src/system/os.py
...rc/test_workflow/test_recorder/test_result_data.py
.../assemble_workflow/bundle_opensearch_dashboards.py
...est_workflow/test_result/test_component_results.py
src/manifests/bundle_manifest.py
src/build_workflow/builder_from_source.py
... and 79 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update a17f679...e0a3675. Read the comment docs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants