envoyproxy/envoy
Auf GitHub ansehenApply CodeQL/LGTM/Semmle static analysis to Envoy code base
Open
#9.485 geöffnet am 26. Dez. 2019
area/securityhelp wanted
Repository-Metriken
- Stars
- (27.997 Stars)
- PR-Merge-Metriken
- (Durchschn. Merge 8T) (378 gemergte PRs in 30 T)
Beschreibung
GitHub now has CodeQL for OSS projects (https://securitylab.github.com/tools/codeql). This is Semmle (lgtm.com), a fairly powerful static analysis tool. We should look at setting this up for Envoy, analyzing reports and adding custom queries.