Otto Visser · d4c8d125
--- a/.gitlab/security-policies/policy.yml 0 → 100644

+ 24

− 0

View file @ d4c8d125

Open in Web IDE
+++ b/.gitlab/security-policies/policy.yml 0 → 100644

+ 24

− 0

View file @ d4c8d125

Open in Web IDE
+---
+scan_result_policy:
+- name: Security check
+  description: For security issues high or critical.
+  enabled: true
+  rules:
+  - type: scan_finding
+    branches: []
+    scanners:
+    - dast
+    - dependency_scanning
+    - sast
+    - secret_detection
+    vulnerabilities_allowed: 0
+    severity_levels:
+    - high
+    - critical
+    vulnerability_states: []
+  actions:
+  - type: require_approval
+    approvals_required: 1
+    role_approvers:
+    - maintainer
+    - owner