-
Notifications
You must be signed in to change notification settings - Fork 84
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(policies): add risk severity via data category #124
feat(policies): add risk severity via data category #124
Conversation
✅ Linked to AMA-3204 · Add data category (severity) to the policy |
ea1baae
to
254bc01
Compare
e2e434e
to
5733994
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
looks good to me
5733994
to
0fba4fc
Compare
What do you think about getting this output instead? [
{
"data_type": "Physical Address",
"filename": "temp.rb",
"line_number": 1,
"severity": "high",
"policy_description": "Logger leaks detected",
"policy_id": "detect_ruby_logger",
"policy_name": "Logger leaks"
},
{
"data_type": "Unique Identifier",
"filename": "temp.rb",
"line_number": 1,
"severity": "critical",
"policy_description": "Logger leaks detected",
"policy_id": "detect_ruby_logger",
"policy_name": "Logger leaks"
}
] |
feat: add policy "id" to policy type
3601a24
to
d737e62
Compare
@cfabianski I can get something like this:
I don't know how to return just the "results" array (below), as you're asking for. @vjerci do you know if this is possible in rego?
|
Description
RiskDatatype
type to include data type categoryNew logger policy output
Checklist