[jira] [Commented] (LOG4J2-3369) integrate ossf/scorecard-action

ASF subversion and git services (Jira) Tue, 19 Apr 2022 13:59:08 -0700


    [ 
https://issues.apache.org/jira/browse/LOG4J2-3369?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17524586#comment-17524586
 ]


ASF subversion and git services commented on LOG4J2-3369:
---------------------------------------------------------

Commit 32e0df1ba2849caf465e8bf59c9e96faa3b73fe9 in logging-log4j2's branch 
refs/heads/release-2.x from Volkan Yazıcı
[ https://gitbox.apache.org/repos/asf?p=logging-log4j2.git;h=32e0df1ba2 ]

LOG4J2-3369 Make build and CodeQL workflows read-only.


> integrate ossf/scorecard-action
> -------------------------------
>
>                 Key: LOG4J2-3369
>                 URL: https://issues.apache.org/jira/browse/LOG4J2-3369
>             Project: Log4j 2
>          Issue Type: Improvement
>            Reporter: Volkan Yazici
>            Assignee: Volkan Yazici
>            Priority: Major
>
> [OSSF Security Scorecards|https://github.com/ossf/scorecard] has [a GitHub 
> Action|https://github.com/ossf/scorecard-action]. This story aims to employ 
> that into Log4j CI.



--
This message was sent by Atlassian Jira
(v8.20.7#820007)

[jira] [Commented] (LOG4J2-3369) integrate ossf/scorecard-action

Reply via email to