Skip to content

OGSMOD-8159: Add security scan for 3rd parties #106

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

OGSMOD-8159: Add security scan for 3rd parties #106

wants to merge 2 commits into from

Conversation

@laforel
Copy link
Contributor

@laforel laforel commented Nov 13, 2025
edited
Loading

Description

Adding a security scan for 3rd party dependencies

Changes Made

  • Added a new pipeline to run snyk security scan

Testing

Test Configuration

  • Platform(s) tested: Ubuntu 24.04
  • Build configuration(s): coverage
  • Render delegate(s):
  • OpenUSD version:

Tests Performed

  • Existing unit tests pass
  • Added/Updated unit test(s) for the changes
  • Tested on multiple platforms
  • Tested with different render delegates
  • Performance testing (if applicable)

Documentation

  • Code is self-documenting / well-commented
  • Public API changes are documented with Doxygen comments

Checklist

  • I have signed the Contributor License Agreement (CLA) (Corporate or Individual)
  • My code follows the project's coding standards
  • My changes generate no new warnings or errors

@laforel laforel force-pushed the laforel/security-scan branch from 14a83df to b8349fc Compare November 13, 2025 00:41
@laforel laforel force-pushed the laforel/security-scan branch from b8349fc to 0257ecf Compare November 13, 2025 00:44
@github-advanced-security
Copy link

github-advanced-security bot commented Nov 13, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@laforel laforel requested review from DDoS and hodoulp November 13, 2025 01:11
@laforel laforel force-pushed the laforel/security-scan branch from 8c831d7 to 9fd2d37 Compare November 13, 2025 01:28
@laforel laforel force-pushed the laforel/security-scan branch from 9fd2d37 to 8c5b1d9 Compare November 13, 2025 01:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DDoS DDoS Awaiting requested review from DDoS

@hodoulp hodoulp Awaiting requested review from hodoulp

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@laforel