Allow endpoint for codecov #314

varunsh-coder · 2023-07-04T15:19:07Z

No description provided.

step-security-bot

Please find StepSecurity AI-CodeWise code comments inline or below.

.github/workflows/test.yml

Please refer to 1 inline comments.

Feedback

We appreciate your feedback in helping us improve the service! To provide feedback, please use emojis on this comment. If you find a comment helpful, give it a 👍. If they aren't useful, kindly express that with a 👎. If you have questions or detailed feedback, please create n GitHub issue in StepSecurity/AI-CodeWise.

step-security-bot · 2023-07-04T15:19:42Z

.github/workflows/test.yml

@@ -21,6 +21,7 @@ jobs:
          disable-sudo: true
          egress-policy: block
          allowed-endpoints: >
+            api.github.com:443


[High]Do not hardcode secrets in the code

API keys, passwords, and other secrets should not be hardcoded in the code. Use environment variables to store sensitive information.

Allow endpoint for codecov

df76f09

step-security-bot reviewed Jul 4, 2023

View reviewed changes

ashishkurmi approved these changes Jul 4, 2023

View reviewed changes

varunsh-coder merged commit 75ac554 into main Jul 4, 2023
5 checks passed

varunsh-coder deleted the codecov-allow-domain branch July 4, 2023 19:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Allow endpoint for codecov #314

Allow endpoint for codecov #314

varunsh-coder commented Jul 4, 2023

step-security-bot left a comment

step-security-bot Jul 4, 2023

Allow endpoint for codecov #314

Allow endpoint for codecov #314

Conversation

varunsh-coder commented Jul 4, 2023

step-security-bot left a comment

Choose a reason for hiding this comment

.github/workflows/test.yml

Feedback

step-security-bot Jul 4, 2023

Choose a reason for hiding this comment