Mark Esler
Mark Esler
Please add an AppArmor profile. This will require a profile in main and it would be great if Authd could provide this directly. [Please take care to confine D-Bus](https://bugs.launchpad.net/ubuntu/+source/dbus-broker/+bug/2015538/comments/6). Security...
Please be aware that `cargo audit` will warn if other rust projects vendor Parser since the dependency paste is no longer maintained (RUSTSEC-2024-0436). ``` [eslerm@ares Parser]$ cargo audit Updating crates.io...
Adds private_vulnerability_reporting to the github_repository resource's security_and_analysis block. Implementation uses dedicated GitHub API endpoints rather than the repository Edit API, since PVR status is not included in the SecurityAndAnalysis response:...
Several repos use this action: nami, source-integrity-demo, maxcve, auto-deploy-demo, chainguard-migration-demo, and ynad. They had or are using the mutable tags `@main`, `@v3.2.0`, and `@v3.7.0`. ProdSec is onboard with using mutable...