Building the next generation DevSecOps platform for all things vulnerability related @Smithy, ex Cloudflare and Curve.
andream16
Follow
Pinned Loading
Contribution activity
April 2025
Created 16 commits in 2 repositories
Created a pull request in smithy-security/smithy that received 1 comment
Fixing malformed environment variables and values in component.yml
Quotes and correct mapping of env vars.
+26
−26
lines changed
•
1
comment
Opened 10 other pull requests in 2 repositories
smithy-security/smithy
7
merged
1
open
-
Jira on new sdk - pt 1
This contribution was made on Apr 22
-
Update dependencies on pkg/sarif to v0.0.3 and sdk to v0.0.11-alpha
This contribution was made on Apr 16
-
Support for version command in smithyctl.
This contribution was made on Apr 15
-
Testing gh reporter
This contribution was made on Apr 11
-
For spyros
This contribution was made on Apr 7
-
Fixing typo in trufflehog component.yaml
This contribution was made on Apr 7
-
Removing /zap-with-orchestration-script.
This contribution was made on Apr 7
-
Adding missing component.yamls and refreshing docs
This contribution was made on Apr 7
smithy-security/pkg
2
merged
-
Fixing bug with RoundTripper recursion.
This contribution was made on Apr 24
-
Retry
This contribution was made on Apr 24
Reviewed 20 pull requests in 3 repositories
smithy-security/smithy
18 pull requests
-
Add metadata publishing to image get
This contribution was made on Apr 17
-
OCU-536 Add metadata to scanners
This contribution was made on Apr 17
-
Nits
This contribution was made on Apr 17
-
allow targets to propagate metadata (Fixes OCU-532)
This contribution was made on Apr 15
-
Testing gh reporter
This contribution was made on Apr 15
-
bugfix: read from the metadata JSON
This contribution was made on Apr 15
-
nit: make zap orchestrator run a more verbose unauthenticated scan wi…
This contribution was made on Apr 15
-
fixes ocu-530: add functionality to git-clone library to manage github pull request refs
This contribution was made on Apr 11
-
Ensure trivy parses correctly CVE IDs from findings list
This contribution was made on Apr 11
-
cdxgen to v1 with orchestration for writing to dependency track for now
This contribution was made on Apr 8
-
wrap trufflehog and add 'write to file' entrypoint'
This contribution was made on Apr 8
-
Fix pip audit experience
This contribution was made on Apr 7
-
Mobsfscan
This contribution was made on Apr 7
-
add permission to write packages
This contribution was made on Apr 2
-
cleanup leftover pipeline and fix slack component manifest
This contribution was made on Apr 2
-
add names to elasticsearch, defectdojo and slack reporter containers, close SAAS-931, SAAS-932, SAAS-933
This contribution was made on Apr 2
-
orchestrate Zap with a single python script instead of a shell script…
This contribution was made on Apr 2
-
fix workflow run build labels to have the same interface as other subcommands
This contribution was made on Apr 2
smithy-security/docs
1 pull request
-
docs for all v1 components
This contribution was made on Apr 17
smithy-security/pkg
1 pull request
-
Sarif to ocsf
This contribution was made on Apr 16
165
contributions
in private repositories
Apr 1 – Apr 24