Remove snyk [automated] #139
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
In mid-December 2024 we will be letting our Snyk contract expire. We'll be moving to GitHub Advanced Security as an alternative. This PR is an attempt to get ahead of the deadline. Considering how out of date some of our Snyk implementations are, and that we rarely take the time to merge the PRs, we think it's fine to remove it way ahead of time. If you want an interrim solution, enable Dependabot Security updates for this repository by visiting the following page and clicking 'Enable' next to 'Dependabot security updates': https://github.com/Financial-Times/n-syndication/settings/security_analysis You're also free to ignore this PR and do the work yourself closer to the deadline. Cyber will be doing some broader comms later in the year. This PR was automated, please take a little extra care when reviewing. I won't be attempting to fix build failures or small repo-specific quirks but feel free to build on top of this PR. **Note:** we were unable to automatically update the package lock for this repository as our script encountered errors. You may need to look into the issue before merging.
rowanmanning
force-pushed
the
remove-snyk
branch
from
c6ec2dd
to
3fec9c5
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
In mid-December 2024 we will be letting our Snyk contract expire. We'll
be moving to GitHub Advanced Security as an alternative.
This PR is an attempt to get ahead of the deadline. Considering how out
of date some of our Snyk implementations are, and that we rarely take
the time to merge the PRs, we think it's fine to remove it way ahead of
time.
If you want an interrim solution, enable Dependabot Security updates for
this repository by visiting the following page and clicking 'Enable' next
to 'Dependabot security updates':
https://github.com/Financial-Times/n-syndication/settings/security_analysis
You're also free to ignore this PR and do the work yourself closer to
the deadline. Cyber will be doing some broader comms later in the year.
This PR was automated, please take a little extra care when reviewing. I
won't be attempting to fix build failures or small repo-specific quirks
but feel free to build on top of this PR.
Note: we were unable to automatically update the package lock for this
repository as our script encountered errors. You may need to look into the
issue before merging.