Skip to content

Project is out of compliance with Binary Artifacts policy: binaries present in source code #6072

@godofredoc

Description

@godofredoc
Contributor

Security Policy Violation
Project is out of compliance with Binary Artifacts policy: binaries present in source code

Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.

Remediation Steps
To remediate, remove the generated executable artifacts from the repository.

Artifacts Found

  • flutter-gui-tests/gradle/wrapper/gradle-wrapper.jar
  • gradle/wrapper/gradle-wrapper.jar
  • lib/dart-plugin/212.5486/Dart.jar
  • lib/dart-plugin/212.5486/resources_en.jar
  • lib/dart-plugin/deps/json.jar
  • lib/dart-plugin/deps/weberknecht-0.1.5.jar
  • lib/java-string-similarity-2.0.0.jar
  • lib/jxbrowser/jxbrowser-7.22.jar
  • lib/jxbrowser/jxbrowser-swing-7.22.jar

Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.

Activity

godofredoc

godofredoc commented on Apr 1, 2022

@godofredoc
ContributorAuthor

The fix for gradle-wrapper is to remove them and adding a rule to .gitignore.

added this to the On Deck milestone on Apr 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Relationships

    None yet

      Participants

      @stevemessick@godofredoc

      Issue actions

        Project is out of compliance with Binary Artifacts policy: binaries present in source code · Issue #6072 · flutter/flutter-intellij