Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Excluding test folders from snyk scan (test data) #19483

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Excluding test folders from snyk scan (test data) #19483

wants to merge 2 commits into from
+9 −0

Conversation

dshafranskiy-r7
Copy link

Excluding test folders for Snyk scans.
Makes zero changes to actual application.

Verification

List the steps needed to make sure this thing works

  • [N/A] Start msfconsole
  • [N/A] use exploit/windows/smb/ms08_067_netapi.
  • Verify the thing does what it should
  • Verify the thing does not do what it should not
  • [N/A] Document the thing and how it works (Example)

Testing:

snyk code test

pre:
  469 Code issues found
  35 [High]   298 [Medium]   136 [Low] 
post:
  160 Code issues found
  28 [High]   71 [Medium]   61 [Low]

@dshafranskiy-r7
Excluding test folders from snyk scan (test data)
1b7cdc4 
```bash
snyk code test

pre:
  469 Code issues found
  35 [High]   298 [Medium]   136 [Low] 
post:
  160 Code issues found
  28 [High]   71 [Medium]   61 [Low] 
```
jvoisin
jvoisin reviewed Sep 20, 2024
View reviewed changes
.snyk Outdated
Comment on lines 6 to 9
# includes our unit tests which include hard coded passwords and encrypting keys for testing purposes.
- spec/
# includes the source code to local exploits and utilities which have to be written in a particular way to exploit the vulnerabilities that we're targeting.
- external/source/
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
# includes our unit tests which include hard coded passwords and encrypting keys for testing purposes.
- spec/
# includes the source code to local exploits and utilities which have to be written in a particular way to exploit the vulnerabilities that we're targeting.
- external/source/
# exclude our unit tests which contain hard coded passwords and encrypting keys for testing purposes.
- spec/
# exclude the source code to local exploits and utilities which have to be written in a particular way to exploit the vulnerabilities that we're targeting.
- external/source/

Otherwise, it's a tad confusing :D

Copy link
Author

@dshafranskiy-r7 dshafranskiy-r7 Sep 20, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Otherwise, it's a tad confusing :D

Sorry, was copying quotes from ticket, where it made sense in context of exception.
Here is opposite, correct.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jvoisin jvoisin jvoisin approved these changes

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@dshafranskiy-r7 @jvoisin