Allstar is a security-policy GitHubApp. It is installed on this org, and this repository contains the configuration for that app. It is configured to create issues on repos that do not comply with the configured policy.
Allstar is configured in opt-in. See here for the list of enabled repos. Feel free to submit a PR to enable/disable repos.
These are the expected settings to be in compliance
Branches enforced | default |
Require approval | yes |
Approvals required | 1 |
Dismiss stale reviews | not required |
Block force push | yes |
- Binary artifacts not allowed.
- Push access allowed.
- Admin access not allowed.
- SECURITY.md required.