In order to get some certification of conformity, we need to make sure that someone who put the code in the wizard was not the author of this code, so that someone did not put malicious code into it.
The approach I think of is to use stateful host server protection. We will have an intermediate branch into which we combine the work, and we can check these commits to make sure that they were not combined by the original author. Then we apply the “green” status to this commit, and only green commit can go to the master.
Maybe there is a better approach? I could not find anything, but if I missed some feature or usual practice for this problem, I would love to know.
source
share