-
Notifications
You must be signed in to change notification settings - Fork 2.1k
Expand file tree
/
Copy pathsecurity-scan.hcl
More file actions
37 lines (31 loc) · 877 Bytes
/
security-scan.hcl
File metadata and controls
37 lines (31 loc) · 877 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
# Copyright (c) HashiCorp, Inc.
# SPDX-License-Identifier: BUSL-1.1
container {
local_daemon = true
secrets {
all = true
skip_path_strings = ["/website/content/"]
}
dependencies = true
alpine_security = true
}
binary {
go_modules = true
osv = true
go_stdlib = true
nvd = false
secrets {
all = true
skip_path_strings = ["/website/content/"]
}
# Triage items that are _safe_ to ignore here. Note that this list should be
# periodically cleaned up to remove items that are no longer found by the scanner.
triage {
suppress {
vulnerabilities = [
"GO-2022-0635", // github.com/aws/aws-sdk-go@v1.55.6 TODO(jrasell): remove when dep updated.
"GO-2025-3543", // github.com/opencontainers/runc TODO(jrasell): remove once withdrawn from DBs.
]
}
}
}