This issue tracks the rollout of application security in CI. Requires workflow updates: * [x] Dependabot Version updates * [x] dependency review * [x] OpenSSF scorecard and best practices (badges in README) * [x] release artifact attestation * [x] release SBOMs * [ ] ~coverage, if possible (badge in README)~ Only integration tests available. * [x] code linters Requires repository config updates, after workflows updates are merged: * [ ] Dependabot Alerts * [ ] Dependabot Security updates * [ ] CodeQL * [ ] secret scanning and push protection * [ ] private vulnerability reporting
This issue tracks the rollout of application security in CI.
Requires workflow updates:
coverage, if possible (badge in README)Only integration tests available.Requires repository config updates, after workflows updates are merged: