[GH-ISSUE #140] Add dependency vulnerability scanning to CI/CD #126

New issue

Closed

opened 2026-03-07 19:42:22 +03:00 by kerem · 0 comments

kerem commented

2026-03-07 19:42:22 +03:00

Owner

Originally created by @mschlaipfer on GitHub (Feb 5, 2026).
Original GitHub issue: https://github.com/awslabs/iam-policy-autopilot/issues/140

https://github.com/google/osv-scanner and/or cargo audit

See https://shnatsel.medium.com/i-am-stepping-back-from-maintaining-cargo-audit-35bb5f832d43 for some discussion on osv-scanner vs cargo audit (I'm not sure yet if one or the other is preferable).

Originally created by @mschlaipfer on GitHub (Feb 5, 2026). Original GitHub issue: https://github.com/awslabs/iam-policy-autopilot/issues/140 https://github.com/google/osv-scanner and/or cargo audit See https://shnatsel.medium.com/i-am-stepping-back-from-maintaining-cargo-audit-35bb5f832d43 for some discussion on osv-scanner vs cargo audit (I'm not sure yet if one or the other is preferable).