Fix or remove the whitesource check from non-main branches where it is unreliable
#3711
Labels
Comments
3 tasks
joshuarrrr
changed the title
main branches where it is unreliablemain branches where it is unreliable
joshuarrrr
added
ci
security feature
help wanted
|
I have a feeling that Mend is failing intentionally so we will not call them with every change unnecessarily; We should the Mend worflows to only when the lockfile or the package manifests change; we need the package manifests for cases where a version was bumped but a lock file was accidentally (or maliciously) omitted. In short: we certainly want Mend scans run on all non-main branches; we just need to be frugal and so only when needed. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
On non-
mainbranches, the whitesource check is marked as 'failed' even when no scan was triggered. For example, see https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3699/checks?check_run_id=12310441779In
main, such cases are not marked as failures: https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3652/checks?check_run_id=12258568680We need to fix this behavior, or limit the check to only
main.The text was updated successfully, but these errors were encountered: