-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy path.pre-commit-hooks.yaml
More file actions
22 lines (19 loc) · 1.06 KB
/
.pre-commit-hooks.yaml
File metadata and controls
22 lines (19 loc) · 1.06 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
- id: run-security-scan
name: Run a security scan
description: Run a security scan against the files in this commit
language: docker_image
entry: ghcr.io/uktrade/github-standards:latest run_scan
stages: [pre-commit]
require_serial: true # This avoids the pre-commit splitting the list of changed files into batches of 4, and calling the pre-commit hook multiple times
- id: run-personal-data-scan
name: Run a personal data scan
description: Run a security scan against the files in this commit
language: system
entry: bash -c 'echo "This hook is deprecated, it can be removed from your local .pre-commit-config.yaml file for version ghcr.io/uktrade/github-standards:latest" && exit 0'
stages: [pre-commit]
- id: validate-security-scan
name: Validate the security scan hook
description: Validate the hook that runs the security scans has run, and add a signed-off git trailer if security scans have passed
language: docker_image
entry: ghcr.io/uktrade/github-standards:latest validate_scan
stages: [commit-msg]