Skip to content

Add security scanning scripts #9

New issue
New issue
Closed
#25
Closed
Add security scanning scripts#9
#25
Labels
priority-2High priority, address soonscriptsPowerShell, Bash, or Python scriptssecuritySecurity-related changes or concerns
@WilliamBerryiii

Description

@WilliamBerryiii
WilliamBerryiii
opened on Nov 6, 2025

Issue Description

The repository needs PowerShell scripts for security scanning, including SHA pinning validation, staleness checking, and automated updates for GitHub Actions.

Additional Context

Files to add:

  • scripts/security/Test-DependencyPinning.ps1 - Validate dependencies are pinned to SHAs
  • scripts/security/Test-SHAStaleness.ps1 - Check for stale SHA references
  • scripts/security/Update-ActionSHAPinning.ps1 - Update action references to latest SHAs

Priority: Wave 2 (Priority 2) - Depends on Wave 1 completion

Dependencies: Requires scripts/README.md from repository foundation issue

Testing: Execute each script, verify JSON output format, test with sample workflow files

Metadata

Metadata

Assignees

No one assigned

    Labels

    priority-2High priority, address soonscriptsPowerShell, Bash, or Python scriptssecuritySecurity-related changes or concerns

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions