mikefarah/yq
yq is a portable command-line YAML, JSON, XML, CSV, TOML, HCL and properties processor
GitHub Actions security score
| mikefarah/yq | |
|---|---|
Score | 9/10 |
License | MIT License |
Maintained | 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 |
Vulnerabilities | 0 existing vulnerabilities detected |
Docker vulnerabilities | docker://mikefarah/yq:4-githubaction (2 existing vulnerabilities detected) |
Branch protection | branch protection is not maximal on development and all release branches |
Manual code review | - |
Secure publishing | - |
Signed commits | - |
Automated security tools | - |
Popular | Used by 1964 open-source projects |
Security Policy | security policy file detected |