forked from jfrog/frogbot
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathfrogbot-config.yml
58 lines (48 loc) · 2.15 KB
/
frogbot-config.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
# The "params" section includes the configuration of a single Git repository that needs to be scanned.
# For Azure Repos, Bitbucket Server and GitHub with JFrog Pipelines or Jenkins, you can define multiple "params" sections one after the other, for scanning multiple
# Git repositories in the same organization.
- params:
# Git parameters
git:
# [Mandatory]
# Name of the git repository to scan
repoName: repo-name
# [Mandatory]
# List of branches to scan
branches:
- master
# Frogbot scanning parameters
scan:
# [Default: false]
# Frogbot displays all existing vulnerabilities, including the ones that were not added by the pull request
# includeAllVulnerabilities: true
# [Default: true]
# Frogbot does not fail the task if security issues are found and this parameter is set to false
# failOnSecurityIssues: false
# List of subprojects / project dirs inside the Git repository
projects:
# [Mandatory for projects which use npm, yarn 2, nuget and dotnet to download their dependencies]
# Installation command (e.g. npm i, nuget restore)
# - installCommand: ""
# [Default: root directory]
# List of relative path's to the projects directories in the git repository
# workingDirs:
# - "."
# [Mandatory for pip only if using requirements file, Default: pip install .]
# The requirements file name that used to install dependencies in case of pip package manager
# pipRequirementsFile: ""
# [Default: true]
# Use Gradle Wrapper (gradlew/gradlew.bat) to run Gradle
# useWrapper: true
# [Optional]
# Name of a Virtual Repository in Artifactory to resolve (download) the project dependencies from
# repository: ""
# JFrog Platform parameters
jfrogPlatform:
# [Optional]
# JFrog project key. Learn more about it [here](https://www.jfrog.com/confluence/display/JFROG/Projects)
# jfrogProjectKey: ""
# [Optional]
# Xray Watches. Learn more about it [here](https://www.jfrog.com/confluence/display/JFROG/Configuring+Xray+Watches)
# watches:
# - ""