muaddib-scanner 2.11.161 → 2.11.162
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/package.json
CHANGED
package/stats.json
CHANGED
package/zizmor.yml
ADDED
|
@@ -0,0 +1,18 @@
|
|
|
1
|
+
# zizmor configuration — https://docs.zizmor.sh/configuration/
|
|
2
|
+
#
|
|
3
|
+
# Suppress a finding ONLY when it is a confirmed false positive, and keep the
|
|
4
|
+
# rationale on the same line. Schema:
|
|
5
|
+
#
|
|
6
|
+
# rules:
|
|
7
|
+
# <audit-id>: # e.g. template-injection, artipacked, cache-poisoning
|
|
8
|
+
# ignore:
|
|
9
|
+
# - <workflow>.yml # ignore the whole file
|
|
10
|
+
# - <workflow>.yml:LINE # ignore one line
|
|
11
|
+
# - <workflow>.yml:LINE:COL# ignore one exact finding
|
|
12
|
+
#
|
|
13
|
+
# Policy for this repo: prefer FIXING findings over ignoring them. As of the first
|
|
14
|
+
# run every finding is real (template-injection in publish.yml, artipacked on the
|
|
15
|
+
# checkout steps, cache-poisoning, adhoc-packages), so nothing is suppressed here.
|
|
16
|
+
# Add an entry below only after confirming a genuine false positive.
|
|
17
|
+
|
|
18
|
+
rules: {}
|