-
Notifications
You must be signed in to change notification settings - Fork 25
/
.poutine.sample.yml
49 lines (38 loc) · 1.17 KB
/
.poutine.sample.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
# When using analyze_org, ignore forked repositories in the organization
# default: false
ignoreForks: true
# Set rule configuration options
rulesConfig:
pr_runs_on_self_hosted:
allowed_runners:
- self-hosted
- label:gpu
- group:prdeploy
# Skip findings if any rules in this list matches the finding's properties.
# Each rule can have the following keys: job, level, osv_id, path, purl, rule.
# The value of each key is a string or a list of strings.
# default: []
skip:
skipExamples:
# skip findings by rule level (one of: note, warning, error)
- level: note
# skip findings at a given path
- path: .github/workflows/safe.yml
# skip findings of a given rule
- rule: unpinnable_action
# skip findings of a rule at given paths
- rule: pr_runs_on_self_hosted
path:
- .github/workflows/pr.yml
# skip findings of a rule about a list of packages
- rule: github_action_from_unverified_creator_used
purl:
- pkg:githubactions/dorny/paths-filter
- pkg:githubactions/golangci/golangci-lint-action
# skip findings of a rule for a list of repositories
- rule: pr_runs_on_self_hosted
purl:
- pkg:github/org/repo
# skip findings by OSV ID
- osv_id:
- GHSA-mcph-m25j-8j63