APPSECTOOLS-28032 Sec Onboard: Code Analysis Onboarding

peakon · Jul 14, 2024 · 496ba29 · 496ba29
1 parent cd5c733
commit 496ba29
Showing 1 changed file with 28 additions and 0 deletions.
diff --git a/.security_config/security_config.yaml b/.security_config/security_config.yaml
@@ -0,0 +1,28 @@
+# yaml-language-server: $schema=https://security-api.appsec.inday.io/schemas/security_config.json
+# This is the configuration file for Chimera. This file is required to allow scanning platform to scan your repo.
+# Please see https://confluence.workday.com/pages/viewpage.action?pageId=1943985516
+
+#####################
+# CHANGE LOG
+#####################
+# (re)adding code analysis service webhook: seeking approval on pr [placeholder]
+# (re)adding code analysis service ac svc-secapi-appsec: seeking approval on pr [placeholder1]
+
+#####################
+# SLACK CONFIGURATION
+#####################
+# Uncomment the below section and provide a Slack channel's name to allow Chimera to
+# notifiy your slack channel about scans. Please see Chimera documentation on how to do this.
+#slack:
+  #enabled: true
+  #channel: <slack-channel-name>
+
+##########################
+# SCAN TOOL  CONFIGURATION
+##########################
+tools_config:
+  semgrep:
+    rulesets: []
+  snyk: {}
+  trufflehog: {}
+  checkov: {}