Use Static Application Security Testing for All Commits

Use Case

• Incubating: Expected
• Active: Expected
• Retiring: N/A

Description

All Commits are Scanned by a Static Application Security Testing Tool

Details

• C-SCRM:
• Priority Group: P6
• Mitre: CWE-1076
• Sources: OWASP SCVS L1 6.6OpenSSF Scorecard
• How To: CodeQL Docs