zsp/everything-claude-code
1
0
Fork 0
mirror of https://github.com/affaan-m/everything-claude-code.git synced 2026-05-15 21:33:04 +08:00
Code Issues Packages Projects Releases Wiki Activity

security: add supply-chain IOC scanner (#1904)

Browse Source
This commit is contained in:
Affaan Mustafa
2026-05-14 21:15:35 -04:00
committed by GitHub
parent 0e66c838c7
commit 7d15a2282b
7 changed files with 562 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
tests/scripts/observability-readiness.test.js
View File

@@ -114,6 +114,10 @@ function seedMinimalRepo(rootDir, overrides = {}) {
'docs/security/supply-chain-incident-response.md': [
'TanStack',
'Mini Shai-Hulud',
'scan-supply-chain-iocs.js',
'gh-token-monitor',
'.claude/settings.json',
'.vscode/tasks.json',
'npm audit signatures',
'trusted publishing',
'pull_request_target',
@@ -126,6 +130,8 @@ function seedMinimalRepo(rootDir, overrides = {}) {
'id-token: write',
'shared cache'
].join('\n'),
'scripts/ci/scan-supply-chain-iocs.js': 'TanStack Mini Shai-Hulud gh-token-monitor',
'tests/ci/scan-supply-chain-iocs.test.js': 'scan-supply-chain-iocs',
'tests/ci/validate-workflow-security.test.js': 'npm audit signatures persist-credentials: false',
'tests/scripts/npm-publish-surface.test.js': 'npm pack --dry-run Python bytecode',
'tests/docs/ecc2-release-surface.test.js': 'publication-readiness.md',