open-vault/scan.hcl

repository {
  go_modules = true
  osv = true
  secrets {
    all = true
  } 
  dependabot {
    required = true
    check_config = true
  }
  
  plugin "semgrep" {
    use_git_ignore = true
    exclude = ["vendor"]
    config = ["tools/semgrep/ci", "p/r2c-security-audit"]
  }
  
  plugin "codeql" {
    languages = ["go"]
  }
}
PSP-256 - Add security-scanner tool (#17988) Add security-scanner tool and github workflow 2022-11-17 23:12:03 +00:00			`repository {`
			`go_modules = true`
			`osv = true`
			`secrets {`
			`all = true`
			`}`
			`dependabot {`
			`required = true`
			`check_config = true`
			`}`

			`plugin "semgrep" {`
			`use_git_ignore = true`
			`exclude = ["vendor"]`
			`config = ["tools/semgrep/ci", "p/r2c-security-audit"]`
			`}`

			`plugin "codeql" {`
			`languages = ["go"]`
			`}`
			`}`