To allow for security visibility ahead of merges.
2 Likes
For general-purpose reporting, LFx Security scans only on the default branch. We currently do not have plans to extend this to cover other branches.
We recommend that maintainers set up a CI/CD workflow configuration to scan for vulnerabilities, code secrets, and non-inclusive language when pull requests are created as part of the project’s standard status checks workflow.
1 Like