mirror of
https://github.com/project-zot/zot.git
synced 2025-01-13 22:50:38 -05:00
5968e7199f
(cherry picked from commit6d03ce5f2d) Additional changes on top of:6d03ce5f2d- Build and use zot from the same branch do not use a container image as scan target, use the binary - Fix typo in rules filename - Add the full rule list to the rules config file - Ignore some of the specific rules and add reasons - Add security-related headers to fix some of the issues identified by the scan - Update UI it includes the latest fixes for zap scan issues Signed-off-by: Andrei Aaron <aaaron@luxoft.com> Co-authored-by: Ramkumar Chinchani <rchincha@cisco.com>
61 lines
1.3 KiB
YAML
61 lines
1.3 KiB
YAML
run:
|
|
deadline: 60m
|
|
skip-dirs:
|
|
- "internal"
|
|
|
|
linters:
|
|
enable-all: true
|
|
disable: funlen,gocognit,exhaustivestruct,paralleltest,forbidigo,ireturn,wrapcheck,exhaustive,maintidx,exhaustruct,nosnakecase,interfacer,structcheck,varcheck,deadcode,ifshort,golint,scopelint,maligned,rowserrcheck,sqlclosecheck
|
|
|
|
linters-settings:
|
|
dupl:
|
|
threshold: 200
|
|
nestif:
|
|
min-complexity: 26
|
|
cyclop:
|
|
max-complexity: 40
|
|
skip-tests: true
|
|
varnamelen:
|
|
check-return: true
|
|
ignore-type-assert-ok: true
|
|
ignore-map-index-ok: true
|
|
ignore-chan-recv-ok: true
|
|
ignore-names:
|
|
- err
|
|
- ok
|
|
- gc
|
|
- wg
|
|
ignore-decls:
|
|
- n int
|
|
- i int
|
|
- r *os.File
|
|
- w *os.File
|
|
- to int64
|
|
- l *ldap.Conn
|
|
- w http.ResponseWriter
|
|
- r *http.Request
|
|
gci:
|
|
sections:
|
|
- standard
|
|
- default
|
|
- prefix(zotregistry.io/zot)
|
|
wsl:
|
|
allow-assign-and-anything: true
|
|
enforce-err-cuddling: true
|
|
nolintlint:
|
|
allow-unused: true
|
|
gomnd:
|
|
settings:
|
|
mnd:
|
|
checks: argument,case,condition,operation,return,assign
|
|
ignored-numbers: 10,64
|
|
gomoddirectives:
|
|
replace-allow-list:
|
|
- helm.sh/helm/v3
|
|
issues:
|
|
exclude-rules:
|
|
- path: pkg/extensions/search/schema.resolvers.go
|
|
linters:
|
|
- lll
|
|
- varnamelen
|
|
- gci
|