feat: health check card #62
Conversation
Minder Vulnerability Report ✅Minder analyzed this PR and found it does not add any new vulnerable dependencies.
|
![stacklok-cloud-staging[bot]](https://avatars.githubusercontent.com/u/110237746?s=60&v=4){kind=small}
There was a problem hiding this comment.
Dependency Information
Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.
📦 Dependency: @tanstack/query-core
Trusty Score: 0
📦 Dependency: @tanstack/react-query
Trusty Score: 0
There was a problem hiding this comment.
Dependency Information
Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.
📦 Dependency: @tanstack/query-core
Trusty Score: 0
Scoring details
| Component | Score |
|---|---|
| Package activity | 8.8 |
| Repository activity | 8.3 |
| User activity | 9.4 |
| Provenance | verified_provenance_match |
Proof of Origin (Provenance)
This package can be linked back to its source code using a historical provenance map.
We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
| Published package versions | 290 |
| Number of git tags or releases | 377 |
| Versions matched to tags or releases | 159 |
This package has been digitally signed using sigtore.
| Source repository | https://github.com/TanStack/query |
| Cerificate Issuer | CN=sigstore-intermediate,O=sigstore.dev |
| GitHub action workflow | .github/workflows/ci.yml |
| Rekor (public ledger) entry | https://search.sigstore.dev/?logIndex=162027659 |
📦 Dependency: @tanstack/react-query
Trusty Score: 0
Scoring details
| Component | Score |
|---|---|
| Package activity | 8.8 |
| Repository activity | 8.3 |
| User activity | 9.4 |
| Provenance | verified_provenance_match |
Proof of Origin (Provenance)
This package can be linked back to its source code using a historical provenance map.
We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
| Published package versions | 362 |
| Number of git tags or releases | 377 |
| Versions matched to tags or releases | 202 |
This package has been digitally signed using sigtore.
| Source repository | https://github.com/TanStack/query |
| Cerificate Issuer | CN=sigstore-intermediate,O=sigstore.dev |
| GitHub action workflow | .github/workflows/ci.yml |
| Rekor (public ledger) entry | https://search.sigstore.dev/?logIndex=162027699 |
Alternatives
| Package | Score | Description |
|---|---|---|
| swr | 0 | |
| react-async | 0 | |
| react-fetching-library | 0 |
There was a problem hiding this comment.
Dependency Information
Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.
📦 Dependency: @tanstack/query-core
Trusty Score: 0
Scoring details
| Component | Score |
|---|---|
| Package activity | 8.8 |
| Repository activity | 8.3 |
| User activity | 9.4 |
| Provenance | verified_provenance_match |
Proof of Origin (Provenance)
This package can be linked back to its source code using a historical provenance map.
We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
| Published package versions | 290 |
| Number of git tags or releases | 377 |
| Versions matched to tags or releases | 159 |
This package has been digitally signed using sigtore.
| Source repository | https://github.com/TanStack/query |
| Cerificate Issuer | CN=sigstore-intermediate,O=sigstore.dev |
| GitHub action workflow | .github/workflows/ci.yml |
| Rekor (public ledger) entry | https://search.sigstore.dev/?logIndex=162027659 |
📦 Dependency: @tanstack/react-query
Trusty Score: 0
Scoring details
| Component | Score |
|---|---|
| Package activity | 8.8 |
| Repository activity | 8.3 |
| User activity | 9.4 |
| Provenance | verified_provenance_match |
Proof of Origin (Provenance)
This package can be linked back to its source code using a historical provenance map.
We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
| Published package versions | 362 |
| Number of git tags or releases | 377 |
| Versions matched to tags or releases | 202 |
This package has been digitally signed using sigtore.
| Source repository | https://github.com/TanStack/query |
| Cerificate Issuer | CN=sigstore-intermediate,O=sigstore.dev |
| GitHub action workflow | .github/workflows/ci.yml |
| Rekor (public ledger) entry | https://search.sigstore.dev/?logIndex=162027699 |
Alternatives
| Package | Score | Description |
|---|---|---|
| swr | 0 | |
| react-async | 0 | |
| react-fetching-library | 0 |
There was a problem hiding this comment.
Dependency Information
Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.
📦 Dependency: @tanstack/query-core
Trusty Score: 0
Scoring details
| Component | Score |
|---|---|
| Package activity | 8.8 |
| Repository activity | 8.3 |
| User activity | 9.4 |
| Provenance | verified_provenance_match |
Proof of Origin (Provenance)
This package can be linked back to its source code using a historical provenance map.
We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
| Published package versions | 290 |
| Number of git tags or releases | 377 |
| Versions matched to tags or releases | 159 |
This package has been digitally signed using sigtore.
| Source repository | https://github.com/TanStack/query |
| Cerificate Issuer | CN=sigstore-intermediate,O=sigstore.dev |
| GitHub action workflow | .github/workflows/ci.yml |
| Rekor (public ledger) entry | https://search.sigstore.dev/?logIndex=162027659 |
📦 Dependency: @tanstack/react-query
Trusty Score: 0
Scoring details
| Component | Score |
|---|---|
| Package activity | 8.8 |
| Repository activity | 8.3 |
| User activity | 9.4 |
| Provenance | verified_provenance_match |
Proof of Origin (Provenance)
This package can be linked back to its source code using a historical provenance map.
We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
| Published package versions | 362 |
| Number of git tags or releases | 377 |
| Versions matched to tags or releases | 202 |
This package has been digitally signed using sigtore.
| Source repository | https://github.com/TanStack/query |
| Cerificate Issuer | CN=sigstore-intermediate,O=sigstore.dev |
| GitHub action workflow | .github/workflows/ci.yml |
| Rekor (public ledger) entry | https://search.sigstore.dev/?logIndex=162027699 |
Alternatives
| Package | Score | Description |
|---|---|---|
| swr | 0 | |
| react-async | 0 | |
| react-fetching-library | 0 |
Pull Request Test Coverage Report for Build 12771691290Details
💛 - Coveralls |
Adds a "CodeGate status" card to the UI which displays the status of the backend.
It has 3 states:
And also has a fallback error UI pointing to Discord & Github issues.
For both states, it will poll the backend on a configurable second interval, and on window focus and re-connect — so it should appear quite "live".
I have used a table component with the view to adding more rows in the future — e.g. the CA certificate trust status.
Screen.Recording.2025-01-14.at.3.57.50.PM.mov