12
Option to allow certified and partner orbs only
C
Chris Knowles
Under security settings, we would like to allow certified orbs as well as partner orbs but disallow other orb usage or publishing of orbs. The context is within partners we trust such as Snyk but we want to prevent usage of other orbs without a better way to check they are secure or a way to know where they come from. We understand we can copy/paste the orb source into projects, that is not so usable with hundreds of projects though.
CCI-I-1332
Activity
Newest
Oldest
Oran Bartell
Enhancements to orb security settings are planned for later this year. This request will be updated again once we begin work. Cheers!
Oran Bartell
D
Dominik K
Related idea: https://ideas.circleci.com/ideas/CCI-I-687