Title: Add ability to configure which hooks to run per scan by EndPositive · Pull Request #757 · secureCodeBox/secureCodeBox · GitHub
Open Graph Title: Add ability to configure which hooks to run per scan by EndPositive · Pull Request #757 · secureCodeBox/secureCodeBox
X Title: Add ability to configure which hooks to run per scan by EndPositive · Pull Request #757 · secureCodeBox/secureCodeBox
Description: Description This PR, if applied, closes #728, mainly by adding the field hookSelector in the scan spec. Besides, this PR adds the cascading scans field inheritHookSelector (default false) for more control over the hookSelector field in cascading scans. Related documentation PR secureCodeBox/documentation#152 Example usage To select all hooks, leave the hookSelector field undefined or specify: hookSelector: {} To select specific hooks: hookSelector: matchExpressions: - key: app.kubernetes.io/instance operator: In values: [ "defectdojo", "update-field" ] To ignore certain hooks: hookSelector: matchExpressions: - key: app.kubernetes.io/instance operator: NotIn values: [ "defectdojo" ] Available operators are: In, NotIn, Exists, DoesNotExist You may also use matchLabels for exact matches on labels: hookSelector: matchLabels: app.kubernetes.io/instance: "defectdojo" matchLabels and matchExpressions may be used simultaneously. Default Hook labels To select a certain hook deployment, use the label app.kubernetes.io/instance (e.g. update-severity for the update-field hook). To select a certain hook type, use the label app.kubernetes.io/name (e.g. update-field). Extra hook labels may be added by deploying the hook with the hook.labels field set in values.yaml. Usage in combination with Cascading Scans Besides existing fields (e.g. inheritVolumes, inheritLabels, etc.), the field inheritHookSelector is now available with the same behavior as the other existing fields. Note: to use cascading scans in combination with hookSelector, ensure that you also select the cascading scans hook. You can use the existing label securecodebox.io/internal to select core features like cascading scans. You should manually ensure that your other selectors override this selector in behavior. hookSelector: matchLabels: securecodebox.io/internal: "true" Checklist Test your changes as thoroughly as possible before you commit them. Preferably, automate your test by unit/integration tests. Make sure npm test runs for the whole project. Make codeclimate checks happy
Open Graph Description: Description This PR, if applied, closes #728, mainly by adding the field hookSelector in the scan spec. Besides, this PR adds the cascading scans field inheritHookSelector (default false) for more ...
X Description: Description This PR, if applied, closes #728, mainly by adding the field hookSelector in the scan spec. Besides, this PR adds the cascading scans field inheritHookSelector (default false) for more ...
Opengraph URL: https://github.com/secureCodeBox/secureCodeBox/pull/757
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/checks(.:format) |
| route-controller | pull_requests |
| route-action | checks |
| fetch-nonce | v2:830cb172-72ba-dcbf-f532-a3da56184b52 |
| current-catalog-service-hash | 87dc3bc62d9b466312751bfd5f889726f4f1337bdff4e8be7da7c93d6c00a25a |
| request-id | EB2A:14E3A1:105BB:13933:69920418 |
| html-safe-nonce | ba2b5d62f5366bcfed4e3793c41baed7b8a6daac21da6971aade6b75c511becd |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFQjJBOjE0RTNBMToxMDVCQjoxMzkzMzo2OTkyMDQxOCIsInZpc2l0b3JfaWQiOiI1OTM1MTI0OTAzMzQ2OTYzNDgwIiwicmVnaW9uX2VkZ2UiOiJpYWQiLCJyZWdpb25fcmVuZGVyIjoiaWFkIn0= |
| visitor-hmac | 002f9a207ea08ad4405bb03caee4865e7042b79e3cef5c1cd0f632a940132425 |
| hovercard-subject-tag | pull_request:764170634 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,checks,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/secureCodeBox/secureCodeBox/pull/757/checks |
| twitter:image | https://avatars.githubusercontent.com/u/25148195?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/u/25148195?s=400&v=4 |
| og:image:alt | Description This PR, if applied, closes #728, mainly by adding the field hookSelector in the scan spec. Besides, this PR adds the cascading scans field inheritHookSelector (default false) for more ... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 42c603b9d642c4a9065a51770f75e5e27132fef0e858607f5c9cb7e422831a7b |
| turbo-cache-control | no-preview |
| go-import | github.com/secureCodeBox/secureCodeBox git https://github.com/secureCodeBox/secureCodeBox.git |
| octolytics-dimension-user_id | 34573705 |
| octolytics-dimension-user_login | secureCodeBox |
| octolytics-dimension-repository_id | 80711933 |
| octolytics-dimension-repository_nwo | secureCodeBox/secureCodeBox |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 80711933 |
| octolytics-dimension-repository_network_root_nwo | secureCodeBox/secureCodeBox |
| turbo-body-classes | logged-out env-production page-responsive full-width full-width-p-0 |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 848bc6032dcc93a9a7301dcc3f379a72ba13b96e |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width