aboutsummaryrefslogtreecommitdiffstats
path: root/gatechecks.yaml
blob: c49fc2e210f610d40dc245175bf418991ea6a78a (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
# When adding projects all `arrays: []` sections must have
# a value, Use 'nullvalue' if no waivers are available.
#
# This file uses standard regular expression syntax,  however be mindful
# of escaping YAML delimiters too (such as `:`) using double quotes "".

binaries:
  binary_ignore:
    - \.DS_Store
    - \.eot
    - \.gif
    - \.git/index
    - \.git/objects
    - \.ico
    - \.idx
    - \.jpeg
    - \.jpg
    - \.otf
    - \.pack
    - \.pdf
    - \.png
    - \.ttf
    - \.woff

file_audits:
  file_names:
    - \.asc$
    - \.gpg$
    - \.key$
    - \.md5
    - \.sig$
    - aws_access_key_id
    - aws_secret_access_key
    - id_rsa
  file_contents:
    - -----BEGIN\sRSA\sPRIVATE\sKEY----
    - "curl(.*?)bash"
    - "git(.*?)clone"
    - "sh(.*?)curl"
    - dual_ec_drbg
    - eval
    - gost
    - md2
    - md4
    - md5
    - panama
    - private_key
    - rc4
    - ripemd
    - secret
    - sha0
    - snefru
    - ssh_key
    - sslv1
    - sslv2
    - streebog
    - tlsv1
    - wget

licence:
  licence_ext:
    - '.java'
    - '.md'
    - '.py'
    - '.rb'
    - '.rst'
    - '.sh'
  licence_ignore:
    - '__init__.py'

project_config:
  - releng: releng_exception.yaml
  - sandbox: sandbox_exception.yaml
  - testproj: sandbox_exception.yaml