polgate

command module
v0.0.0-...-bbdec58 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jun 3, 2024 License: Apache-2.0 Imports: 2 Imported by: 0

README

PolGate

PolGate is a tool for security policies and exception management. Polgate helps you to enable effective gatekeeping when integrated in the CI/CD pipeline.

Getting started

Ensure $(go env GOPATH)/bin is in your $PATH

go install github.com/c0d3G33k/polgate@main

Supported tools

For more tools, Please create a issue.

Usage

Fail workflow when SemGrep results in error(high) severity findings.

polgate eval --input /input/file/path/results.json --policy semgrep_fail_error

Add exceptions or false positives to continue the workflow.

polgate eval --input /input/file/path/results.json --policy semgrep_fail_error --exceptions exceptions,seprated,by,comma

Apply list of supported policies form a JSON file

polgate eval --input /input/file/path/results.json --policy-file /policy/file/path/policies.json

Apply list of exceptions form a JSON file

polgate eval --input /input/file/path/results.json --policy semgrep_fail_error --exception-file /exceptions/file/path/exceptions.json

List of supported policies

  • semgrep_pass_all
  • semgrep_fail_error
  • semgrep_fail_error_warning
  • semgrep_fail_all

For more policies, Please create a issue.

Policy JSON file template

{
    "policies": [
        "semgrep_fail_all"
    ]
}

Exception JSON file template

{
    "exceptions": [
        "sample-fingerprint",
    ]
}

Documentation

The Go Gopher

There is no documentation for this package.

Directories

Path Synopsis
pkg

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL