Skip to content

Issues: mindersec/minder-rules-and-profiles

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

25 Open 29 Closed
25 Open 29 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Finish REST driver implementation (some pieces were left out from initial implementation)
#306 opened Jan 30, 2025 by mesembria
Drop feature flag to always enable the feature
#305 opened Jan 30, 2025 by mesembria
Ensure appropriate monitoring mechanisms are in place (metrics)
#304 opened Jan 30, 2025 by mesembria
Write smoke tests covering main user flows
#303 opened Jan 30, 2025 by mesembria
Revisit data sources unit test coverage
#302 opened Jan 30, 2025 by teodor-yanev
@teodor-yanev
Ensure smooth, error free application of ruletypes
#301 opened Jan 29, 2025 by mesembria
Ruletype to evaluate PRs with OSV data using data sources P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#300 opened Jan 29, 2025 by mesembria
Productize Data Sources P0 Fix Now: These are urgent issues that preempt other work in the current sprint
#299 opened Jan 29, 2025 by mesembria
5 tasks
@teodor-yanev
1
Implement Security Baseline criterion OSPS-AC-01 P0 Fix Now: These are urgent issues that preempt other work in the current sprint
#298 opened Jan 29, 2025 by mesembria
1
Implement Security Baseline criterion OSPS-QA-03 P0 Fix Now: These are urgent issues that preempt other work in the current sprint
#289 opened Jan 27, 2025 by mesembria
1
@eleftherias
1
Rule pr_vulnerability_check message when no patch exists enhancement New feature or request P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#274 opened Jan 15, 2025 by eleftherias
Scorecard rule requires fields that are not marked as required bug Something isn't working
#211 opened Nov 12, 2024 by eleftherias
Add the possibility to pass a list of trusted packages that can be ignored with Trusty rule type
#293 opened Oct 2, 2024 by samuv
1
LICENSE file rule shouldn't have required parameter that can be blank bug Something isn't working P1 Fix Soon: High priority items that should be considered in the next Sprint planning cycle
#155 opened Sep 9, 2024 by ethomson
1
Create set of rule types that address branch protection rules in GitLab P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#152 opened Aug 30, 2024 by JAORMX
Update SECURITY_INSIGHTS.yaml with latest release data P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#174 opened Jul 11, 2024 by puerco
3
Provide better error message when branch protection API are disabled good first issue Good for newcomers P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#273 opened May 27, 2024 by blkt
1
The dockerfile no latest tag rule does not support dockerfiles in places other than the root directory good first issue Good for newcomers P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#102 opened Apr 24, 2024 by jhrozek
1
No profile status update for "allowed_selected_actions" P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage reminder-fixed Issues that will be resolved once the reminder functionality is implemented
#79 opened Apr 4, 2024 by teodor-yanev
Fix "no open security advisories" rule P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#74 opened Apr 3, 2024 by teodor-yanev
1
Fix actions_check_pinned_tags to work if exclude is omitted good first issue Good for newcomers P1 Fix Soon: High priority items that should be considered in the next Sprint planning cycle
#70 opened Mar 28, 2024 by rdimitrov
Trusty rule type should support rust and java good first issue Good for newcomers P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#67 opened Mar 21, 2024 by ethomson
2
The automatic_branch_deletion ruletype doesn't work properly P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#66 opened Mar 20, 2024 by rdimitrov
1
Create rule which enforces the "Require status checks to pass before merging" branch protection rule in Github good first issue Good for newcomers P2 Nice to fix: non-critical items that should be evaluated and planned during issue triage
#49 opened Feb 7, 2024 by dmjb
4
When the trusty evaluator can't fetch any scores, it still says that the PR contains no packages with low scores bug Something isn't working P1 Fix Soon: High priority items that should be considered in the next Sprint planning cycle
#292 opened Jan 16, 2024 by jhrozek
4
ProTip! Add no:assignee to see everything that’s not assigned.