-
Notifications
You must be signed in to change notification settings - Fork 70
/
trivy.yaml
36 lines (35 loc) · 1018 Bytes
/
trivy.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at https://mozilla.org/MPL/2.0/.
#
# OpenCRVS is also distributed under the terms of the Civil Registration
# & Healthcare Disclaimer located at http://opencrvs.org/license.
#
# Copyright (C) The OpenCRVS Authors located at https://github.com/opencrvs/opencrvs-core/blob/master/AUTHORS.
exit-code: 1
severity:
- HIGH
- CRITICAL
scan:
skip-dirs:
- node_modules
- app/node_modules
- .secrets
- data
- development-environment
- sequence-diagrams
- usr/local/share/.cache/yarn/v6/
- home/node/.cache/yarn/v6
skip-files:
- '**/*.dockerignore'
scanners:
- vuln
- misconfig
ignorefile: .trivyignore.yaml
vulnerability:
ignore-unfixed: true
db:
repository: 'ghcr.io/opencrvs/trivy-db'
java-repository: 'ghcr.io/opencrvs/trivy-java-db'
policies-bundle:
repository: 'ghcr.io/opencrvs/trivy-checks'