0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2024-12-16 20:26:19 -05:00
logto/.zap/rules.conf
simeng-li eb7290b030
fix: fix zap config file (#5788)
fix zap config file
2024-04-24 11:42:38 +00:00

17 lines
608 B
Text

# Mark the following rules as IGNORE
# CloudFlare will block the metadata endpoint access
90034 IGNORE (Cloud Metadata Potentially Exposed - Active/release)
# Not applicable to the cloud appliaction
10096 IGNORE (Timestamp Disclosure - Passive/release)
40039 IGNORE (Web Cache Deception)
# TODO
10063 IGNORE (Permissions Policy Header Not Set - Passive/beta)
# The applicationInsights endpoint will be removed
10055 IGNORE (CSP - Wildcard Directive)
# Experience app is rendered under the root path. No hidden files are exposed. A 404 experience page will be returned.
40035 IGNORE (Hidden File Found)