Show HN: Gitlab CI Component for Vet – Protect CI Pipelines from Vulnerable OSS

Y	Hacker News new \| ask \| show \| jobs

Show HN: Gitlab CI Component for Vet – Protect CI Pipelines from Vulnerable OSS (safedep.io)

1 points by kunalsin9h 438 days ago

GitLab CI Component that lets you seamlessly protect your pipelines from vulnerable and malicious open source dependencies. The component integrates directly into your CI/CD workflow through the GitLab CI Catalog and allows you to establish policy-driven guardrails using Common Expression Language (CEL).

Key features:

- Set your own opinionated security policies as code using CEL - Detect and block risky OSS components before they enter your codebase - Seamless integration as a native GitLab CI Component - Available directly in the GitLab CI Catalog

Try and lets us know our thoughts!