You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: hooks/cascading-scans/README.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -34,7 +34,7 @@ Otherwise your changes will be reverted/overriden automaticaly due to the build
34
34
35
35
## What is "Cascading Scans" Hook about?
36
36
The Cascading Scans Hook can be used to orchestrate security scanners based on defined rule sets.
37
-
The so called `CascadingRules` consist of a `matches section which contains one or multiple rules which are compared against `findings`. When a `finding` matches a `rule` the `scanSpec` section will then be used to create a new scan. To customize the scan to match the finding, the [mustache](https://github.com/janl/mustache.js) templating language can be used to reference fields of the finding.
37
+
The so called `CascadingRules` consist of a `matches` section which contains one or multiple rules which are compared against `findings`. When a `finding` matches a `rule` the `scanSpec` section will then be used to create a new scan. To customize the scan to match the finding, the [mustache](https://github.com/janl/mustache.js) templating language can be used to reference fields of the finding.
38
38
39
39
<-- Todo: should be replaced with an valid docs.secureCodeBox.io link as soon as all ADRs are added there -->
40
40
This Hook is based on the ADR https://github.com/secureCodeBox/secureCodeBox/blob/main/docs/adr/adr_0003.md
@@ -58,7 +58,7 @@ Installing the `Cascading Scans` hook will add a `ReadOnly Hook` to your namespa
Copy file name to clipboardExpand all lines: hooks/cascading-scans/docs/README.ArtifactHub.md
+17-17Lines changed: 17 additions & 17 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -42,7 +42,7 @@ You can find resources to help you get started on our [documentation website](ht
42
42
43
43
## What is "Cascading Scans" Hook about?
44
44
The Cascading Scans Hook can be used to orchestrate security scanners based on defined rule sets.
45
-
The so called `CascadingRules` consist of a `matches section which contains one or multiple rules which are compared against `findings`. When a `finding` matches a `rule` the `scanSpec` section will then be used to create a new scan. To customize the scan to match the finding, the [mustache](https://github.com/janl/mustache.js) templating language can be used to reference fields of the finding.
45
+
The so called `CascadingRules` consist of a `matches` section which contains one or multiple rules which are compared against `findings`. When a `finding` matches a `rule` the `scanSpec` section will then be used to create a new scan. To customize the scan to match the finding, the [mustache](https://github.com/janl/mustache.js) templating language can be used to reference fields of the finding.
46
46
47
47
<-- Todo: should be replaced with an valid docs.secureCodeBox.io link as soon as all ADRs are added there -->
48
48
This Hook is based on the ADR https://github.com/secureCodeBox/secureCodeBox/blob/main/docs/adr/adr_0003.md
@@ -55,21 +55,6 @@ The cascading-scans `scanType` can be deployed via helm:
@@ -184,6 +169,21 @@ zap-http zap-baseline-scan non-invasive medium
184
169
| hook.image.tag | string | defaults to the charts version | The image Tag defaults to the charts version if not defined. |
185
170
| hook.ttlSecondsAfterFinished | string |`nil`| Seconds after which the kubernetes job for the hook will be deleted. Requires the Kubernetes TTLAfterFinished controller: https://kubernetes.io/docs/concepts/workloads/controllers/ttlafterfinished/|
186
171
172
+
## Contributing
173
+
174
+
Contributions are welcome and extremely helpful 🙌
175
+
Please have a look at [Contributing](./CONTRIBUTING.md)
176
+
177
+
## Community
178
+
179
+
You are welcome, please join us on... 👋
180
+
181
+
-[GitHub][scb-github]
182
+
-[Slack][scb-slack]
183
+
-[Twitter][scb-twitter]
184
+
185
+
secureCodeBox is an official [OWASP][scb-owasp] project.
The Cascading Scans Hook can be used to orchestrate security scanners based on defined rule sets.
56
-
The so called `CascadingRules` consist of a `matches section which contains one or multiple rules which are compared against `findings`. When a `finding` matches a `rule` the `scanSpec` section will then be used to create a new scan. To customize the scan to match the finding, the [mustache](https://github.com/janl/mustache.js) templating language can be used to reference fields of the finding.
56
+
The so called `CascadingRules` consist of a `matches` section which contains one or multiple rules which are compared against `findings`. When a `finding` matches a `rule` the `scanSpec` section will then be used to create a new scan. To customize the scan to match the finding, the [mustache](https://github.com/janl/mustache.js) templating language can be used to reference fields of the finding.
57
57
58
58
<-- Todo: should be replaced with an valid docs.secureCodeBox.io link as soon as all ADRs are added there -->
59
59
This Hook is based on the ADR https://github.com/secureCodeBox/secureCodeBox/blob/main/docs/adr/adr_0003.md
0 commit comments