Pedro Kaj Kjellerup Nacht
Pedro Kaj Kjellerup Nacht
As I understand it, DBI tries to be SQL 99 compliant. If so, I believe the standard syntax is in fact ```sql CREATE TABLE {tableName} ( {column Definitions}, CONSTRAINT {PK_Name}...
The issue seems to be that Scorecard uses a GitHub search on the oss-fuzz repo with the query `Ultimaker Cura in:file filename:project.yaml repo:google/oss-fuzz`. However, GitHub search allows for partial matching,...
Sure thing @azeemshaikh38. One question, though: is there some recommended means to test GHAs? I'm especially concerned regarding the codeql-action, since it had a major version upgrade and so might...
Yeah, that sounds safer. Should I just write a PR modifying that test and see if it crashes? Do I even need to submit the PR or can I just...
/remove-lifecycle stale
I wasn't aware that PR results appear automatically in the PR's page. I haven't found an example where this happens (the example above didn't have one, maybe because it didn't...
> SARIF builtin feature seems to show the diff using the annotation API. See example in https://github.com/ossf/scorecard/pull/2485/files As a maintainer, I see a button to dismiss / ignore the alter:...
Ah, that's a bummer, far less interesting in that case. I thought it'd be a dismiss just for the PR, but it'd still appear in the Security Dashboard, basically a...
Hey, let me know if this is something you're interested in. If not, feel free to close!
Hey @thesuperzapper, sorry for the late reply. Looking at your Action logs, we can see the workflows are running with write-all permissions: https://github.com/kubeflow/kubeflow/actions/runs/6500263891/job/17655300160#step:1:19 While setting default read-only tokens is certainly...