Skip to content

Issues: brave/security-action

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

28 Open 71 Closed
28 Open 71 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

https://semgrep.dev/r/generic.secrets.gitleaks.hashicorp-tf-password.hashicorp-tf-password capturing MSK_PASSWORD bug Something isn't working
#572 opened Apr 18, 2024 by thypon
1 of 2 tasks
@thypon
unsafe_load ruleset for ruby enhancement New feature or request
#539 opened Mar 10, 2024 by thypon
@thypon
unwrap rule it's too noisy bug Something isn't working
#527 opened Mar 1, 2024 by thypon
1 of 6 tasks
@thypon
Auto generate rules, based on chromium source-code, to hit on deprecated functions/methods enhancement New feature or request
#521 opened Feb 27, 2024 by thypon
@thypon
False positive GURL original... v. GURL origin bug Something isn't working
#450 opened Dec 18, 2023 by fmarier
1 of 2 tasks
@thypon
2
False positive: memset(foo 0, sizeof(foo)) bug Something isn't working
#426 opened Nov 9, 2023 by fmarier
2 tasks
@thypon
New ruleset: use least privilege if possible when calling SetBindings enhancement New feature or request
#425 opened Nov 9, 2023 by thypon
@thypon
New ruleset for ExposeInterfacesToRenderer and RegisterBrowserInterfaceBindersForFrame in brave-core enhancement New feature or request
#424 opened Nov 9, 2023 by thypon
@thypon
1
New ruleset to catch v8::Function enhancement New feature or request
#412 opened Oct 27, 2023 by thypon
@thypon
Improve cast custom checker bug Something isn't working
#387 opened Oct 5, 2023 by thypon
1 of 2 tasks
@thypon
1
New ruleset: torch load models with safetensor enhancement New feature or request
#386 opened Oct 5, 2023 by thypon
@thypon
1
Look only at main world usages bug Something isn't working
#384 opened Oct 3, 2023 by thypon
1 of 2 tasks
@thypon
1
char foo = 0; is not a truncation bug Something isn't working
#382 opened Oct 3, 2023 by fmarier
2 tasks
1
3
Implement cyclomatic complexity counter to trigger the label enhancement New feature or request
#366 opened Sep 25, 2023 by thypon
@thypon
The needs-sec-review label should block merges enhancement New feature or request
#328 opened Sep 8, 2023 by fmarier
@thypon
2
Cleanup if removed needs-security-action enhancement New feature or request
#254 opened Jul 3, 2023 by thypon
@thypon
3
Add self-tests for tfsec, brakeman and the rest of the integrations enhancement New feature or request
#227 opened Jun 21, 2023 by thypon
@thypon
Feature request: add govulncheck enhancement New feature or request
#168 opened Apr 27, 2023 by thypon
@thypon
3
Write a guide to run the checkers locally! documentation Improvements or additions to documentation
#92 opened Feb 13, 2023 by thypon
@thypon
Evaluate the use of Sarif instead of Reviewdog enhancement New feature or request
#65 opened Jan 27, 2023 by thypon
@thypon
4
Port brakeman to reviewdog enhancement New feature or request
#55 opened Jan 20, 2023 by thypon
2
8
New ruleset: check if redirects are absolute (containing full domain and protocol) enhancement New feature or request
#49 opened Jan 20, 2023 by thypon
@thypon
Port gixy to reviewdog enhancement New feature or request
#48 opened Jan 20, 2023 by thypon
@thypon
Check if dependency is on brave-experiments enhancement New feature or request
#47 opened Jan 20, 2023 by thypon
@thypon
Port cargo audit to reviewdog enhancement New feature or request
#34 opened Jan 19, 2023 by thypon
@thypon
ProTip! Add no:assignee to see everything that’s not assigned.