ghast v1.8.8

Adds two new auxiliary checks:

1. check_for_missing_gitignore_file - checks for missing .gitignore file in root of repository which could lead to accidentally committing sensitive folders/files to repository.
2. check_for_missing_dockerignore_file - checks for missing .dockerignore file in root of repository which could lead to accidentally committing sensitive folders/files into your containerized applications.

ghast v1.7.8

Adds a new auxiliary check (check_for_missing_security_md_file) which notifies users if there is no SECURITY.md file located in the root of the repository hierarchy.

ghast v1.6.8

• Adds additional installation example.
• Removes break in check_for_3p_actions_without_hash that prevents check from running on all steps.
• Adds more clarity to examples file.

ghast v1.6.7

Adds new check(check_for_non_github_managed_actions) which is meant to serve as a reminder to users to review the security posture of non GitHub-managed actions they include in their workflows.

ghast v1.5.7

Merge pull request #4 from 6mile/examples-markdown

Examples markdown

ghast v1.4.7

Adding image to README

ghast v1.4.6

New project name - kudos to @6mile

asa v1.4.5

Updates version to 1.4.5

v1.3.5

Adds new check check_for_remote_script which looks for the inclusion of remote scripts inside of any inline scripts defined within a GitHub Action workflow. Thanks @6mile for contributing this check!

asa v1.2.5

Updating READMe and workflow to point to updated action commit