-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathrulemap.json
More file actions
100 lines (100 loc) · 3.83 KB
/
rulemap.json
File metadata and controls
100 lines (100 loc) · 3.83 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
[
{
"name": "inactive",
"description": "The repository has not been updated in the last year.",
"is_security_rule": true,
"is_policy_rule": true,
"note": ""
},
{
"name": "unprotected_branches",
"description": "The repository has unprotected branches.",
"is_security_rule": true,
"is_policy_rule": true,
"note": ""
},
{
"name": "unsigned_commits",
"description": "One of the last 15 commits to this repository is unsigned.",
"is_security_rule": true,
"is_policy_rule": true,
"note": ""
},
{
"name": "readme_missing",
"description": "The repository does not have a README file.",
"is_security_rule": false,
"is_policy_rule": true,
"note": ""
},
{
"name": "license_missing",
"description": "The repository does not have a LICENSE file (Public Only).",
"is_security_rule": false,
"is_policy_rule": true,
"note": "This rule is only applicable to public repositories. All private and internal repositories are marked as compliant since the check doesn't apply."
},
{
"name": "pirr_missing",
"description": "The repository does not have a PIRR file (Private/Internal Only).",
"is_security_rule": true,
"is_policy_rule": true,
"note": "This rule is only applicable to private and internal repositories. All public repositories are marked as compliant since the check doesn't apply."
},
{
"name": "gitignore_missing",
"description": "The repository does not have a .gitignore file.",
"is_security_rule": false,
"is_policy_rule": true,
"note": ""
},
{
"name": "external_pr",
"description": "The repository has a pull request from a user which isn't a member of the organisation.",
"is_security_rule": true,
"is_policy_rule": false,
"note": ""
},
{
"name": "breaks_naming_convention",
"description": "The repository name does not follow ONS naming convention (No Capitals, Special Characters or Spaces).",
"is_security_rule": false,
"is_policy_rule": true,
"note": ""
},
{
"name": "secret_scanning_disabled",
"description": "The repository does not have secret scanning enabled (Public Only due to GitHub Advanced Security).",
"is_security_rule": true,
"is_policy_rule": true,
"note": "This rule is only applicable to public repositories. All private and internal repositories are marked as compliant since the check doesn't apply."
},
{
"name": "push_protection_disabled",
"description": "The repository does not have push protection enabled.",
"is_security_rule": true,
"is_policy_rule": true,
"note": "This rule is only applicable to public repositories. All private and internal repositories are marked as compliant since the check doesn't apply."
},
{
"name": "dependabot_disabled",
"description": "The repository does not have dependabot enabled.",
"is_security_rule": true,
"is_policy_rule": true,
"note": ""
},
{
"name": "codeowners_missing",
"description": "The repository does not have a CODEOWNERS file.",
"is_security_rule": false,
"is_policy_rule": true,
"note": ""
},
{
"name": "point_of_contact_missing",
"description": "A contact email address cannot be found from the CODEOWNERS file.",
"is_security_rule": true,
"is_policy_rule": true,
"note": "This rule will only check if a point of contact email address can be found from the CODEOWNERS file. If the CODEOWNERS file is missing, this rule will not be triggered and be marked as compliant."
}
]