Confirmed users
1,364
edits
GitHub/Repository Security: Difference between revisions
Add checklist item for Automated vulnerability fixes
(Add problems and options section and link) |
(Add checklist item for Automated vulnerability fixes) |
||
| Line 57: | Line 57: | ||
- [ ] Important milestone achievement criteria should include an audit all relevant verified commits. | - [ ] Important milestone achievement criteria should include an audit all relevant verified commits. | ||
- [ ] Elevated permissions should be granted to teams, not individual accounts, whenever possible. (Only org members can be part of a team.) | - [ ] Elevated permissions should be granted to teams, not individual accounts, whenever possible. (Only org members can be part of a team.) | ||
- [ ] Enable [Automated Security Fixes][1] for the repository. If the vulnerability is not applicable to your repository, document that in the PR, then close (not merge) it. | |||
[1]: https://help.github.com/en/articles/configuring-automated-security-fixes | |||
</pre > | </pre > | ||