status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

security: fix syntax for release scan config (#20279) 

Correct syntax errors introduced in #20264.
This commit is contained in:
Michael Zalimeni 2024-01-19 12:08:54 -05:00 committed by GitHub
parent cee9df574d
commit f942f2dc18
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 15 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
.release/security-scan.hcl
View File

@ -17,8 +17,8 @@ container {
alpine_secdb = true
secrets {
matchers = {
// Use default list, minus Vault (`hashicorp`), which has experienced false positives.
matchers {
// Use most of default list, minus Vault (`hashicorp`), which has experienced false positives.
// See https://github.com/hashicorp/security-scanner/blob/v0.0.2/pkg/scanner/secrets.go#L130C2-L130C2
known = [
// "hashicorp",
@ -53,16 +53,18 @@ binary {
# (yarn.lock) in the Consul binary. This is something we may investigate in the future.
secrets {
// Use most of default list, minus Vault (`hashicorp`), which has experienced false positives.
// See https://github.com/hashicorp/security-scanner/blob/v0.0.2/pkg/scanner/secrets.go#L130C2-L130C2
known = [
// "hashicorp",
"aws",
"google",
"slack",
"github",
"azure",
"npm",
]
matchers {
// Use most of default list, minus Vault (`hashicorp`), which has experienced false positives.
// See https://github.com/hashicorp/security-scanner/blob/v0.0.2/pkg/scanner/secrets.go#L130C2-L130C2
known = [
// "hashicorp",
"aws",
"google",
"slack",
"github",
"azure",
"npm",
]
}
}
}