cdk-insights 1.2.9 → 1.3.0

package/dist/cli/types/cli.types.d.ts

@@ -12,6 +12,8 @@ export interface AnalyzeCommandArgs {
     reset?: boolean;
     failOnCritical?: boolean;
     ruleFilter?: string[];
+    ignoreRules?: string[];
+    ignorePaths?: string[];
     github?: boolean;
     redact?: boolean;
     summaryOnly?: boolean;
@@ -60,6 +62,22 @@ export interface UserConfig {
     feedback?: boolean;
     /** Sensitive data detection configuration */
     sensitiveDataDetection?: SensitiveDataDetectionConfig;
+    /**
+     * Rule IDs to suppress project-wide. Matched against `Issue.ruleId`
+     * — supports exact match or a trailing `*` wildcard (e.g.
+     * `CDK-INSIGHTS-SENSITIVE-*` suppresses every sensitive-data finding).
+     * Use this to silence rules that don't apply to your architecture
+     * instead of patching each call site.
+     */
+    ignoreRules?: string[];
+    /**
+     * Resource paths (CDK construct paths or logical IDs) to skip entirely.
+     * Matched against the resource's `aws:cdk:path` Metadata and its
+     * logical ID — supports exact match or trailing `*` wildcard. Use
+     * this to carve out a subtree of the template (e.g. an imported
+     * third-party construct whose findings are someone else's problem).
+     */
+    ignorePaths?: string[];
     cache?: {
         enabled?: boolean;
         ttl?: number;