-
Notifications
You must be signed in to change notification settings - Fork 127
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
VMR Credential Scanner failed #4486
VMR Credential Scanner failed #4486
Comments
I couldn't figure out the best area label to add to this issue. If you have write-permissions please help me learn by adding exactly one area label. |
1 similar comment
I couldn't figure out the best area label to add to this issue. If you have write-permissions please help me learn by adding exactly one area label. |
I see some work was done in dotnet/runtime#104086 as part of addressing credscan issues. But I don't see any suppressions for these particular failures. Not sure why runtime isn't encountering these. /cc @akoeplinger |
We have them suppressed in https://github.com/dotnet/runtime/blob/53a8a01fe1d421a3e02120b1629a6077d341465d/.config/CredScanSuppressions.json#L5-L15 But these suppressions for the private keyes are not new so I'm a bit confused why this only shows up now? We also have #4259 which tracks making an aggregate suppression file for the VMR. |
Ah I know why, we suppressed them in the VMR via We need to update the paths there. |
Reopen the issue, the latest build (internal Microsoft link) is still failed with new credential scanner errors:
|
Will be fixed by dotnet/sdk#41943 |
Failing build (internal Microsoft link)
Guardian: Post Analysis
failed:The text was updated successfully, but these errors were encountered: