configsentry 0.0.22 → 0.0.24
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +12 -5
- package/package.json +2 -2
package/README.md
CHANGED
|
@@ -15,7 +15,7 @@ npx configsentry ./docker-compose.yml
|
|
|
15
15
|
### GitHub Action (minimal)
|
|
16
16
|
|
|
17
17
|
```yml
|
|
18
|
-
- uses: alfredMorgenstern/configsentry@v0.0.
|
|
18
|
+
- uses: alfredMorgenstern/configsentry@v0.0.23
|
|
19
19
|
with:
|
|
20
20
|
target: .
|
|
21
21
|
```
|
|
@@ -27,7 +27,7 @@ permissions:
|
|
|
27
27
|
contents: read
|
|
28
28
|
security-events: write
|
|
29
29
|
|
|
30
|
-
- uses: alfredMorgenstern/configsentry@v0.0.
|
|
30
|
+
- uses: alfredMorgenstern/configsentry@v0.0.23
|
|
31
31
|
with:
|
|
32
32
|
target: .
|
|
33
33
|
sarif: true
|
|
@@ -69,13 +69,13 @@ node dist/cli.js --target ./docker-compose.yml
|
|
|
69
69
|
### JSON output (CI / tooling)
|
|
70
70
|
|
|
71
71
|
```bash
|
|
72
|
-
node dist/cli.js --target ./docker-compose.yml --json
|
|
72
|
+
node dist/cli.js --target ./docker-compose.yml --format json
|
|
73
73
|
```
|
|
74
74
|
|
|
75
75
|
### SARIF output (GitHub Code Scanning)
|
|
76
76
|
|
|
77
77
|
```bash
|
|
78
|
-
node dist/cli.js --target ./docker-compose.yml --sarif > configsentry.sarif.json
|
|
78
|
+
node dist/cli.js --target ./docker-compose.yml --format sarif > configsentry.sarif.json
|
|
79
79
|
```
|
|
80
80
|
|
|
81
81
|
## Baselines (incremental adoption)
|
|
@@ -92,6 +92,8 @@ Then suppress baseline findings in CI:
|
|
|
92
92
|
node dist/cli.js --target ./docker-compose.yml --baseline .configsentry-baseline.json
|
|
93
93
|
```
|
|
94
94
|
|
|
95
|
+
Tip: for machine output use `--format json` / `--format sarif`.
|
|
96
|
+
|
|
95
97
|
## Docs
|
|
96
98
|
|
|
97
99
|
- GitHub Action usage examples: [`docs/action-usage.md`](docs/action-usage.md)
|
|
@@ -144,7 +146,7 @@ jobs:
|
|
|
144
146
|
runs-on: ubuntu-latest
|
|
145
147
|
steps:
|
|
146
148
|
- uses: actions/checkout@v4
|
|
147
|
-
- uses: alfredMorgenstern/configsentry@v0.0.
|
|
149
|
+
- uses: alfredMorgenstern/configsentry@v0.0.23
|
|
148
150
|
with:
|
|
149
151
|
target: .
|
|
150
152
|
# optional: baseline: .configsentry-baseline.json
|
|
@@ -171,6 +173,11 @@ jobs:
|
|
|
171
173
|
node dist/cli.js --target ./example.docker-compose.yml
|
|
172
174
|
```
|
|
173
175
|
|
|
176
|
+
## Feedback / ideas
|
|
177
|
+
|
|
178
|
+
- Open an issue with a **sanitized minimal Compose snippet**:
|
|
179
|
+
https://github.com/alfredMorgenstern/configsentry/issues
|
|
180
|
+
|
|
174
181
|
## Next steps
|
|
175
182
|
- GitHub Marketplace listing (Action)
|
|
176
183
|
- more rules (policy packs for common stacks)
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "configsentry",
|
|
3
|
-
"version": "0.0.
|
|
3
|
+
"version": "0.0.24",
|
|
4
4
|
"description": "Developer-first guardrails for docker-compose.yml (security + ops footguns).",
|
|
5
5
|
"type": "module",
|
|
6
6
|
"license": "MIT",
|
|
@@ -26,7 +26,7 @@
|
|
|
26
26
|
"node": ">=18"
|
|
27
27
|
},
|
|
28
28
|
"scripts": {
|
|
29
|
-
"test": "node
|
|
29
|
+
"test": "node scripts/run-tests.mjs",
|
|
30
30
|
"build": "node -e \"require('node:fs').rmSync('dist',{recursive:true,force:true})\" && tsc -p tsconfig.json",
|
|
31
31
|
"prepack": "npm run build",
|
|
32
32
|
"start": "node dist/cli.js",
|