2020-07-28 23:09:34 +05:30
|
|
|
{
|
|
|
|
"global": [
|
|
|
|
{
|
|
|
|
"field" : "SECURE_ANALYZERS_PREFIX",
|
|
|
|
"label" : "Image prefix",
|
|
|
|
"type": "string",
|
2020-10-24 23:57:45 +05:30
|
|
|
"default_value": "",
|
|
|
|
"value": "",
|
|
|
|
"size": "MEDIUM",
|
|
|
|
"description": "Analyzer image's registry prefix (or Name of the registry providing the analyzers' image)"
|
2020-07-28 23:09:34 +05:30
|
|
|
},
|
|
|
|
{
|
|
|
|
"field" : "SAST_EXCLUDED_PATHS",
|
|
|
|
"label" : "Excluded Paths",
|
|
|
|
"type": "string",
|
2020-10-24 23:57:45 +05:30
|
|
|
"default_value": "",
|
|
|
|
"value": "",
|
|
|
|
"size": "LARGE",
|
|
|
|
"description": "Comma-separated list of paths to be excluded from analyzer output. Patterns can be globs, file paths, or folder paths."
|
2020-07-28 23:09:34 +05:30
|
|
|
},
|
|
|
|
{
|
2020-10-24 23:57:45 +05:30
|
|
|
"field" : "SAST_ANALYZER_IMAGE_TAG",
|
2020-07-28 23:09:34 +05:30
|
|
|
"label" : "Image tag",
|
|
|
|
"type": "string",
|
2020-10-24 23:57:45 +05:30
|
|
|
"default_value": "",
|
|
|
|
"value": "",
|
|
|
|
"size": "SMALL",
|
|
|
|
"description": "Analyzer image's tag"
|
2020-07-28 23:09:34 +05:30
|
|
|
}
|
|
|
|
],
|
|
|
|
"pipeline": [
|
|
|
|
{
|
|
|
|
"field" : "stage",
|
|
|
|
"label" : "Stage",
|
2020-10-24 23:57:45 +05:30
|
|
|
"type": "string",
|
|
|
|
"default_value": "",
|
|
|
|
"value": "",
|
|
|
|
"size": "MEDIUM",
|
|
|
|
"description": "Pipeline stage in which the scan jobs run"
|
2020-07-28 23:09:34 +05:30
|
|
|
},
|
|
|
|
{
|
2020-10-24 23:57:45 +05:30
|
|
|
"field" : "SEARCH_MAX_DEPTH",
|
|
|
|
"label" : "Search maximum depth",
|
|
|
|
"type": "string",
|
2020-07-28 23:09:34 +05:30
|
|
|
"default_value": "",
|
2020-10-24 23:57:45 +05:30
|
|
|
"value": "",
|
|
|
|
"size": "SMALL",
|
|
|
|
"description": "Maximum depth of language and framework detection"
|
2020-07-28 23:09:34 +05:30
|
|
|
}
|
|
|
|
],
|
|
|
|
"analyzers": [
|
|
|
|
{
|
|
|
|
"name": "brakeman",
|
|
|
|
"label": "Brakeman",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "bandit",
|
|
|
|
"label": "Bandit",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "eslint",
|
|
|
|
"label": "ESLint",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "flawfinder",
|
|
|
|
"label": "Flawfinder",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "kubesec",
|
|
|
|
"label": "kubesec",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "nodejsscan",
|
|
|
|
"label": "Node.js Scan",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "gosec",
|
|
|
|
"label": "Golang Security Checker",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "phpcs-security-audit",
|
|
|
|
"label": "PHP Security Audit",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "pmd-apex",
|
|
|
|
"label": "PMD APEX",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "security-code-scan",
|
|
|
|
"label": "Security Code Scan",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "sobelow",
|
|
|
|
"label": "Sobelow",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "spotbugs",
|
|
|
|
"label": "Spotbugs",
|
|
|
|
"enabled" : true
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"name": "secrets",
|
|
|
|
"label": "Secrets",
|
|
|
|
"enabled" : true
|
|
|
|
}
|
|
|
|
]
|
|
|
|
}
|