forked from hashicorp/vault
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathscan.hcl
More file actions
33 lines (28 loc) · 726 Bytes
/
scan.hcl
File metadata and controls
33 lines (28 loc) · 726 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
# Copyright (c) HashiCorp, Inc.
# SPDX-License-Identifier: BUSL-1.1
repository {
go_modules = true
osv = true
dependabot {
required = true
check_config = true
}
plugin "codeql" {
languages = ["go"]
}
plugin "semgrep" {
use_git_ignore = true
exclude = ["vendor"]
config = [
"tools/semgrep/ci",
"p/r2c-security-audit",
"r/trailofbits.go.hanging-goroutine.hanging-goroutine",
"r/trailofbits.go.racy-append-to-slice.racy-append-to-slice",
"r/trailofbits.go.racy-write-to-map.racy-write-to-map",
]
exclude_rule = ["generic.html-templates.security.unquoted-attribute-var.unquoted-attribute-var"]
}
secrets {
all = true
}
}