forked from cx-sean-carroll/DecorationComparison
-
Notifications
You must be signed in to change notification settings - Fork 13
Expand file tree
/
Copy pathapplication.yml
More file actions
96 lines (91 loc) · 2.27 KB
/
application.yml
File metadata and controls
96 lines (91 loc) · 2.27 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
logging:
file: flow.log
level:
com:
checkmarx:
flow:
service: TRACE
org:
apache:
http:
wire: TRACE
springframework:
web:
client:
RestTemplate: TRACE
cxflow:
bug-tracker: Jira
#bug-tracker-impl:
#- GitHub
branches:
- master
filter-severity:
filter-category:
- SQL_Injection
- Stored_XSS
- Reflected_XSS_All_Clients
filter-cwe:
filter-status:
# - Urgent
# - Confirmed
#mitre-url: https://cwe.mitre.org/data/definitions/%s.html
#wiki-url: https://custodela.atlassian.net/wiki/spaces/AS/pages/79462432/Remediation+Guidance
codebash-url: https://checkmarx-demo.codebashing.com/courses/
jira:
url: ${{ secrets.JIRA_URL }}
username: [email protected]
token: ${{ secrets.JIRA_TOKEN }}
project: DSVW
issue-type: Bug
priorities:
High: High
Medium: Medium
Low: Low
Informational: Lowest
open-transition: In Progress
close-transition: Done
open-status:
- Backlog
- Selected for Development
- In Progress
closed-status:
- Done
fields:
- type: result
name: application
jira-field-name: Application
jira-field-type: label
# - type: result
# name: cwe
# jira-field-name: CWEs
# jira-field-type: label
- type: result
name: category
jira-field-name: Category
jira-field-type: label
# - type: result
# name: loc
# jira-field-name: LOC
# jira-field-type: label
# jira-default-value: XXXXX
checkmarx:
version: 9.0
scope: access_control_api sast_rest_api
team: /CxServer/
username: admin
password: ${{ secrets.CHECKMARX_SCA_USERNAME }}
client-secret: 014DF517-39D1-4453-B7B3-9930C563627C
base-url: http://cxsast.ngrok.io
url: ${checkmarx.base-url}/cxrestapi
#WSDL Config
portal-url: ${checkmarx.base-url}/cxwebinterface/Portal/CxWebService.asmx
sdk-url: ${checkmarx.base-url}/cxwebinterface/SDK/CxSDKWebService.asmx
portal-wsdl: ${checkmarx.base-url}/Portal/CxWebService.asmx?wsdl
sdk-wsdl: ${checkmarx.base-url}/SDK/CxSDKWebService.asmx?wsdl
github:
webhook-token: 12345
token: ${{ secrets.GH_TOKEN }}
url: https://github.com
api-url: https://api.github.com/repos/
false-positive-label: false-positive
block-merge: true