Page MenuHomeDevCentral

Evaluate Snyk
Open, Needs TriagePublic

Description

Snyk is a closed source tool to "continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more".

Evaluation process first steps would be:

  • setup to link to our code
  • document how to add new repos

Event Timeline

dereckson created this task.Tue, Nov 27, 21:57
dereckson added a comment.EditedTue, Nov 27, 22:04

One of the problem is the lack of integration with Phabricator.

For example, it allows to interact with GitHub and open a PR there when it founds an issue: https://github.com/nasqueron/daeghrefn-www/pull/1

The PR is closed, when the branch is restored, it's autodeleted.

The commit message doesn't respect imperative mode: https://github.com/nasqueron/daeghrefn-www/pull/1/commits/28510e0cd38ce00cde64dfd1a736a7ff322cf0d4