Security Policy violation Binary Artifacts

[google-allstar-prod[bot]]

This issue was automatically created by Allstar.

Security Policy Violation Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

---

:warning: There is an updated version of this policy result! Click here to see the latest update

---

Allstar has been installed on all Google managed GitHub orgs. Policies are gradually being rolled out and enforced by the GOSST and OSPO teams. Learn more at http://go/allstar

This issue will auto resolve when the policy is in compliance.

Issue created by Allstar. See https://github.com/ossf/allstar/ for more information. For questions specific to the repository, please contact the owner or maintainer.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[pierredelisle]

Ack. We're looking into moving these binary dependencies to their own maven repo.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

The policy result has been updated.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

The policy result has been updated.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

The policy result has been updated.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

The policy result has been updated.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

The policy result has been updated.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

The policy result has been updated.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

[google-allstar-prod[bot]]

Updating issue after ping interval. See its status below.

---

Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps To remediate, remove the generated executable artifacts from the repository.

First 10 Artifacts Found

• app/third_party/connectedhomeip/libs/AndroidPlatform.jar
• app/third_party/connectedhomeip/libs/CHIPController.jar
• app/third_party/connectedhomeip/libs/SetupPayloadParser.jar
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/arm64-v8a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libCHIPController.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libSetupPayloadParser.so
• app/third_party/connectedhomeip/libs/jniLibs/armeabi-v7a/libc++_shared.so
• app/third_party/connectedhomeip/libs/jniLibs/x86/libCHIPController.so
• Run a Scorecards scan to see full list.

Additional Information This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.