We’re working on a "comment command" feature that should help you ignore specific issues in a PR while keeping Socket as a required GitHub check. You’ll be able to leave a comment like the following:
@socket-security ignore ts-node@1.0.0
Which will allow you to indicate that you have evaluated a specific version of a dependency and consider it to be safe. The commenter must have write access to the repo.
Created by Feross Aboukhadijeh (Socket)
·