APPSECTOOLS-28032 Sec Onboard: Code Analysis Onboarding

.security_config/security_config.yaml

@@ -0,0 +1,28 @@
+# yaml-language-server: $schema=https://security-api.appsec.inday.io/schemas/security_config.json
+# This is the configuration file for Chimera. This file is required to allow the scanning platform to scan your repo.
+# Please see https://wolinks.com/chimera for details.
+
+#####################
+# CHANGE LOG
+#####################
+# (re)adding code analysis service webhook: seeking approval on pr [https://api.github.com/repos/peakon/ecr-tag-buildkite-plugin/pulls/6]
+# (re)adding code analysis service ac svc-secapi-appsec: seeking approval on pr [https://api.github.com/repos/peakon/ecr-tag-buildkite-plugin/pulls/6]
+
+#####################
+# SLACK CONFIGURATION
+#####################
+# Uncomment the below section and provide a Slack channel's name to allow Chimera to
+# notify your slack channel about scans. Please see Chimera documentation on how to do this.
+#slack:
+  #enabled: true
+  #channel: <slack-channel-name>
+
+##########################
+# SCAN TOOL  CONFIGURATION
+##########################
+tools_config:
+  semgrep:
+    rulesets: []
+  snyk: {}
+  trufflehog: {}
+  checkov: {}