minder
minder copied to clipboard
stacklok
Software Supply Chain Security Platform
Enhance the PR alert type to allow Minder to leave comments on specific lines. Given I have a rule in a profile with the alert type `pull_request_comment` and I've defined...
REGO functions can be declared as `Nondeterministic` which allows REGO runtime to behave correctly in some cases. Here's an excerpt of the [documentation](https://www.openpolicyagent.org/docs/latest/extensions/) (golang specific [here](https://pkg.go.dev/github.com/open-policy-agent/opa/rego#Function)). > Since this built-in...
### Please describe the enhancement With https://github.com/mindersec/minder/issues/5145, the Minder server will be able to accept a GitHub Actions OIDC token for authentication. If no other authentication source is available (`MINDER_AUTH_TOKEN`,...
Develop a way to monitor remaining tokens when calling GitHub, so it is possible to see when there is a problem. This is driven by the possibility of repository registration...
I can run `minder ruletype get --name ""` and pass an empty name. We should require that a name be set both in the CLI command and on the API...
I can run `minder profile status list --name` and pass an empty name. We should require that a name be set both in the CLI command and on the API...
### Describe the issue When running `minder repo register` on the CLI, I can filter the list of repos by searching for the name. After searching, if I select a...
### Describe the issue Currently, project creation logic is split between `internal/controlplane` and `internal/projects`. Specifically, in `internal/controlplane/handlers_projects.go`, we have code handling project creation directly, which leads to code duplication and...
These currently take the raw values that one can give to build a schema validation object. While this works, it's not ideal as we need to explicitly build these again....
Most of the tables in Minder database have type `timestamp`, which expands to `timestamp without time zone`, thus leaving them without time zone information. This is not a problem at...