Comments (2)
Would a good alternative be using the compliance action as a reusable workflow in all repositories that need to be compliance checked?
from advanced-security-compliance.
@leostolyarov Agree. After looking at some of the limitations for how many requests the Action would have to make this seems to me unlikely to work very well (especially for large orgs).
I much prefer your idea of just using a reusable workflow versus this issues original idea.
from advanced-security-compliance.
Related Issues (20)
- License Scanning and Policy : manage unknown license with local file HOT 3
- Docs say "[email protected]" but should say "[email protected]". HOT 2
- Actions reusable workflows
- Authentication and Permissions Docs
- Use Cases and Examples Docs
- PaC - Disabling Policy Blocks when no specified
- Custom policy clone in private repository does not work when using a GitHub App API token HOT 2
- Documentation - Using GitHub App with Action HOT 3
- Use PURL spec to dependencies
- Licensing: Condition ID check not implemented HOT 2
- Secrets Detected in Branch #1 Causes Blocking of Pull Request Merge in a Clean Branch #2 HOT 2
- Policy file not found HOT 1
- Unknown Exception was hit, Error: Query failed to run HOT 4
- Dependabot not supporting GitHub Enterprise HOT 2
- GitHub Enterprise seems to not support ... HOT 3
- allow list HOT 4
- Unknown Exception: Query failed to run by returning code of 502 HOT 1
- Change "conditions" for a more meaningful name HOT 2
- GHAS Compliance Action Default Branch Limitation HOT 3
- Deprecation Notice
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from advanced-security-compliance.