LabelListIssues returns the IFC label for a list_issues result. Public repositories are universally readable; private repositories are restricted to their collaborators (resolved client-side from the marker). Public repository issue contents are attacker-controllable, while private repository issues
(isPrivate bool)
| 79 | // Public repository issue contents are attacker-controllable, while private |
| 80 | // repository issues are treated as trusted collaborator-authored data. |
| 81 | func LabelListIssues(isPrivate bool) SecurityLabel { |
| 82 | if isPrivate { |
| 83 | return PrivateTrusted() |
| 84 | } |
| 85 | return PublicUntrusted() |
| 86 | } |
| 87 | |
| 88 | // LabelRepoUserContent returns the IFC label for user-authored content scoped |
| 89 | // to a repository when that tool has not opted into a more specific integrity |