ocket8888 opened a new pull request #5459:
URL: https://github.com/apache/trafficcontrol/pull/5459
## What does this PR (Pull Request) do?
- [x] This PR is not related to any Issue
This PR adds a new GHA workflow that scans the repository for common
security vulnerabilities like e.g.
```
func Handle(w http.ResponseWriter, r *http.Request) {
globalDBHandle.Exec("DELETE FROM " + r.Body.Read())
}
```
or something. It scans Go code, Javascript, and Python - and the tools has
support for Java as well, but TR's build process couldn't be done automatically
by the "Autobuild" step and I didn't bother trying to get it to work until I
know if anyone's even interested in this.
## Which Traffic Control components are affected by this PR?
None
## What is the best way to verify this PR?
Note the Action results on this PR. Should pass (because it did on my fork's
`master` branch)
## The following criteria are ALL met by this PR
- [x] This PR is a test
- [x] Documentation is unnecessary
- [x] An update to CHANGELOG.md is not necessary
- [x] This PR includes any and all required license headers
- [x] This PR **DOES NOT FIX A SERIOUS SECURITY VULNERABILITY**
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
