gpt4 book ai didi

security - Dependabot/Snyk工具,例如Rust和/或Elixir语言

转载 作者:行者123 更新时间:2023-12-03 11:45:17 25 4
gpt4 key购买 nike

我们已经使用DependabotSnyk来检测GitHub托管代码存储库中的漏洞,但它们仅支持我们正在使用的某些当前语言(NodeJS,Java,JavaScript,Kotlin和Swift),所以这里的问题是哪种工具对于此类任务,如果存在一种语言,我们应该考虑使用Rust(cargo.toml)或Elixir(mix.exs)语言。

最佳答案

1/Dependabot现在确实支持Rust和Elixir。

what I'm looking is something that actually analyzes our GitHub repos either as a whole Organization


2/ Since July 2020

Enable Dependabot, dependency graph, and other security features across your organization


You can now enable or disable the dependency graph, Dependabot alerts, Dependabot security updates, and secret scanning for all repositories in an organization with one click. You can also set whether each feature will be enabled or disabled for newly-created repositories.
Look for the "Security & analysis" tab in your organization settings page and on your user settings page.

In addition, we've consolidated the repository-level settings for dependency graph, Dependabot alerts, Dependabot security updates, and secret scanning to a "Security & analysis" tab in the repository settings page.

Learn more in the docs

关于security - Dependabot/Snyk工具,例如Rust和/或Elixir语言,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/62476559/

25 4 0
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com