Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add capability to "ignore" policy check #616

Closed
2 tasks
crutchfield opened this issue Oct 26, 2023 · 2 comments
Closed
2 tasks

Add capability to "ignore" policy check #616

crutchfield opened this issue Oct 26, 2023 · 2 comments
Labels
enhancement This issue or pull request will add new or improve existing functionality
Milestone

Comments

@crutchfield
Copy link
Contributor

💡 Summary

What is the work, as a high-level summary?

Add capability to Scuba Config to explicitly ignore checking a given policy.

Motivation and context

Why does this work belong in this project?

This would be useful because user will have more flexibility to manage risks.

Implementation notes

Please provide details for implementation, such as:

  • Add ignore section for policies
  • Allow justification for ignoring
  • Allow expiration date for ignoring a policy
  • Report Ignore policy info in Output report

Acceptance criteria

How do we know when this work is done?

  • User can choose to ignore a given policy
  • Ignored policies reported with associated data
@crutchfield crutchfield added the enhancement This issue or pull request will add new or improve existing functionality label Oct 26, 2023
@crutchfield crutchfield added this to the Backlog milestone Oct 26, 2023
@mitchelbaker-cisa
Copy link
Collaborator

mitchelbaker-cisa commented Jun 18, 2024

Closing as this is a duplicate of #738 which is in progress.

@adhilto Should we consider adding a consolidated section for all toggled policies and/or expiration dates? Those were the two items in the implementation notes list not covered in the scope of #738.

@adhilto
Copy link
Collaborator

adhilto commented Jun 18, 2024

Closing as this is a duplicate of #738 which is in progress.

@adhilto Should we consider adding a consolidated section for all toggled policies and/or expiration dates? Those were the two items in the implementation notes list not covered in the scope of #738.

Ooh intriguing ideas, I hadn't thought of that. Expiration dates would be a nice-to-have feature, but I'd like them to be optional, as you might want to toggle something off permanently. And I'll toy around with what a consolidated section might look like.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement This issue or pull request will add new or improve existing functionality
Projects
None yet
Development

No branches or pull requests

3 participants