forked from Deepanshaccion/veracode
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathveracode.yml
98 lines (95 loc) · 2.77 KB
/
veracode.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
veracode_sast_pipeline_scan:
# Please only specify trigger:true for either push event or
# pull request event. Specifying both will only execute push event.
# Leaving them both false means this will never run
push:
trigger: true
# Please only specify either branches_to_run or branches_to_exclude
# Entering both will only execute branches_to_run
# Leaving them both blank means this will never run
branches_to_run:
branches_to_exclude:
- default_branch
pull_request:
trigger: false
action:
- opened
- synchronize
target_branch:
- default_branch
break_build: true
policy: verademo
create_issues: false
create_checks: true
create_checks_annotations: true
compilation: 'mvn clean package'
os-image: 'os-image-name'
compile_locally: false
local_compilation_workflow: na
veracode_sast_policy_scan:
# Please only specify trigger:true for either push event or
# pull request event. Specifying both will only execute push event.
# Leaving them both false means this will never run
push:
trigger: false
branches_to_run:
- default_branch
branches_to_exclude:
pull_request:
trigger: true
action:
- opened
- synchronize
target_branch:
- default_branch
break_build: true
policy: verademo
create_issues: false
create_checks: true
create_checks_annotations: true
compilation: 'mvn clean package'
os-image: 'os-image-name'
compile_locally: false
local_compilation_workflow: veracode-build
veracode_sca_scan:
# Please only specify trigger:true for either push event or
# pull request event. Specifying both will only execute push event.
# Leaving them both false means this will never run
push:
trigger: false
# Please only specify either branches_to_run or branches_to_exclude
# Entering both will only execute branches_to_run
# Leaving them both blank means this will never run
branches_to_run:
- "*"
branches_to_exclude:
pull_request:
trigger: true
action:
- opened
- synchronize
target_branch:
- default_branch
break_build: true
create_issues: false
veracode_container_security_scan:
# Please only specify trigger:true for either push event or
# pull request event. Specifying both will only execute push event.
# Leaving them both false means this will never run
push:
trigger: false
# Please only specify either branches_to_run or branches_to_exclude
# Entering both will only execute branches_to_run
# Leaving them both blank means this will never run
branches_to_run:
- "*"
branches_to_exclude:
pull_request:
trigger: false
action:
- opened
- synchronize
target_branch:
- default_branch
break_build: true
create_issues: false