forked from ossf/allstar
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #21 from contentful/sec-3230
[SEC-3230]Update Allstar Documentation
- Loading branch information
Showing
6 changed files
with
109 additions
and
143 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
[Miro board with current architecture](https://miro.com/app/board/uXjVM2g_HGQ=/?share_link_id=272309503681) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
1. Create a new folder in pkg/policies | ||
2. Create your check and unit test in that folder |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
* When changes are merged to `main` a [Github Action](.github/workflows/docker-image.yaml) is kicked off that builds a new image and uploads it to ECR. | ||
* This image is used by [allstar-agent](https://github.com/contentful/allstar-agent) and will kick off a new deployment(automatically??) of the agent to the `contentful-security-sandbox` organization. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,55 @@ | ||
# How to disable Allstar | ||
If you are receiving unwanted issues created by Allstar, follow the instructions on this page to disable the app on your project. | ||
|
||
[Disable Allstar, org-level opt-out strategy](#disable-allstar-org-level-opt-out-strategy) | ||
[Disable Check, repository level](#disable-a-specific-check-with-repo-override) | ||
[Disable Allstar, repo level](#disable-allstar-with-repo-override) | ||
|
||
|
||
## Disable Allstar, org-level opt-out strategy | ||
|
||
These instructions disable Allstar on a repository when Allstar is configured at the organization level using the opt-out strategy. | ||
|
||
In the `.allstar` repository in your organization, open the file named | ||
`allstar.yaml`. | ||
|
||
Find the `optOutStrategy` setting: | ||
|
||
``` | ||
optConfig: | ||
optOutStrategy: true | ||
``` | ||
|
||
To opt-out, submit a PR to the `.allstar` repo, and add the name of your | ||
repository to the opt-out list: | ||
|
||
``` | ||
optConfig: | ||
optOutStrategy: true | ||
optOutRepos: | ||
- my-repo-name-here | ||
``` | ||
|
||
Allstar will be disabled on your repository when the pull request is merged. | ||
|
||
### Disable a specific check with repo-override | ||
|
||
To opt-out of a specific check in your repo create `.allstar/control-name.yaml` and add | ||
``` | ||
optConfig: | ||
optOut: true | ||
``` | ||
|
||
Merge this file to disable Allstar on your repository. | ||
|
||
### Disable allstar with repo-override | ||
|
||
To disable Allstar using repo-override, create a file in your repo named | ||
`.allstar/allstar.yaml` with the contents: | ||
|
||
``` | ||
optConfig: | ||
optOut: true | ||
``` | ||
|
||
Merge this file to disable Allstar on your repository. |
This file was deleted.
Oops, something went wrong.