Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

AllStar: Continuous Security Policy Enforcement for GitHub Projects

published on 2021-08-11 12:05:00 UTC by Kaylin Trychon
Content:
 


As an active member of the open source software (OSS) community, Google recognizes the growing threat of software supply chain attacks against OSS we use and develop. Building on our efforts to improve OSS security with an end-to-end framework (SLSA), metrics (Scorecards), and coordinated vulnerability disclosure (guide), we are excited to announce Allstar.


Allstar is a GitHub app that continuously enforces security policy settings through selectable automated enforcement actions. Allstar is already filing and closing security issues for Envoy and GoogleContainerTools, with more organizations and repositories lined up. 


See the OpenSSF announcement for more information on Allstar.




Article: AllStar: Continuous Security Policy Enforcement for GitHub Projects - published over 3 years ago.

http://security.googleblog.com/2021/08/allstar-continuous-security-policy.html   
Published: 2021 08 11 12:05:00
Received: 2021 08 11 12:05:08
Feed: Google Online Security Blog
Source: Google Online Security Blog
Category: Cyber Security
Topic: Cyber Security
Views: 1

Custom HTML Block

Click to Open Code Editor