As a citizen developer
I want code generated on my behalf by app builder
To have it’s dependencies scanned to ensure they are secure/
None
None
Hi @EdEastwood , the App Builder currently supports a fixed set of libraries that you can use in your apps. The App Builder also does not support the installation of additional packages. Here you can find the list of supported packages:
Having said that, we would like to add the possibility of providing scanning and reporting of security and quality checks that exceed that of only supply-chain vulnerability scanning, so that these can be attached to the verification of apps to add to the layer of trust that the badge should provide.
If you have any specifics on what you’d like to see checked and scanned, please let us know.