Skip to content

Commit 5fe5073

Browse files
committed
chore: allowlist tonymenu.app/astro.build URLs and website lockfile
git-shield flagged the new public domains and Astro's doc links as "private_url" PII, plus funding/sponsor URLs in website/package-lock.json. None of these are secrets.
1 parent ebd0643 commit 5fe5073

2 files changed

Lines changed: 9 additions & 0 deletions

File tree

.pii-allowlist

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -172,3 +172,8 @@ registry[.]npmjs[.]org
172172
^https?://x/chat$
173173
# Fixed system-clock dates used in vitest rate-limit/daily-cap window tests.
174174
^2026-02-01T
175+
176+
# ── TonyMenu marketing site (website/) public domains and doc links ──
177+
^https?://([a-z0-9-]+\.)*tonymenu\.app(/.*)?$
178+
^https?://([a-z0-9-]+\.)*astro\.build(/.*)?$
179+
^https?://astro\.badg\.es(/.*)?$

git-shield.toml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,5 +5,9 @@
55
# they're public UI strings shipped with the frontend.
66
ignore_globs = [
77
"web/messages/vec.json",
8+
# Generated lockfile: full of public npm package funding/sponsor URLs
9+
# (opencollective.com, github.com/sponsors/*) that the PII scanner
10+
# mistakes for sensitive data. Not secrets, regenerated on every bump.
11+
"website/package-lock.json",
812
]
913
allowlist_paths = [".pii-allowlist"]

0 commit comments

Comments
 (0)