-
Notifications
You must be signed in to change notification settings - Fork 1
/
config.yml
73 lines (69 loc) · 1.27 KB
/
config.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
scanners:
repositories:
# NOTE: a timestamp formatted as '-YYYY-MM-DD' is appended to the index
database_index: inclusion-scanner-repositories
# A ElasticSearch host is required and provided by docker-compose.yaml
elasticsearch:
url: http://localhost:9200
# Words to scan for. Note: terms are not case sensitive
terms:
- "master"
- "slave"
- "blacklist"
- "black-list"
- "black list"
- "whitelist"
- "white-list"
- "white list"
- "whitebox"
- "white-box"
- "white box"
- "blackbox"
- "black-box"
- "black box"
- "blacklist"
- "black-list"
- "blacklisted"
- "black-listed"
- "whitelisted"
- "white-listed"
- "white listed"
- "grooming"
- "groomed"
- "dummy"
- "sanity"
- "offshore"
- "tribal"
- "man hours"
- "man-hours"
- "manhours"
# File extensions included in the scan
included_extensions:
- ".yaml"
- ".yml"
- ".json"
- ".js"
- ".go"
- ".java"
- ".scala"
- ".cs"
- ".fs"
- ".pipeline"
- ".md"
- ".txt"
- "Jenkinsfile"
# Ignore directories that may contain lots of generated files
excluded_directories:
- ".git"
- ".DS_Store"
- "node_modules"
- "jspm_packages"
- "web_modules"
- "build"
- "develop-eggs"
- "dist"
- "downloads"
- "eggs"
- ".eggs"
- "wheels"
- "python-wheel"