Skip to content
This repository has been archived by the owner on Jul 25, 2022. It is now read-only.

Static code analysis #537

Open
hoeltcl opened this issue Apr 3, 2022 · 2 comments
Open

Static code analysis #537

hoeltcl opened this issue Apr 3, 2022 · 2 comments

Comments

@hoeltcl
Copy link

hoeltcl commented Apr 3, 2022

Gardener informs its stakeholders in its CNCF CII Badge, that static code checks are applied by using Checkmarx. This repository has findings, which have to be assessed by the component owner(s). As required all prio high findings were already been immediately assessed. Please find the maximum processing times until when to assess the remaining prio medium findings in the SAP Security Response Team's Wiki (restricted access). At the time being you can ignore the prio low findings. Please find background information and a link to the Checkmarx project for your repository in the Wiki (restricted access). In the Wiki (restricted access) you will as well find information how to get a Checkmarx user which is required to be able to do your assessment in the Checkmarx Web UI.

@hoeltcl
Copy link
Author

hoeltcl commented Apr 3, 2022

@neo-liang-sap

@neo-liang-sap
Copy link
Contributor

this repo has been deprecated - why still need attention?
CC @donistz

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants