forked from awslabs/aidlc-workflows
-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy path.semgrepignore
More file actions
20 lines (16 loc) · 874 Bytes
/
.semgrepignore
File metadata and controls
20 lines (16 loc) · 874 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
# Semgrep ignore patterns
# https://semgrep.dev/docs/ignoring-files-folders-code
# Lock files — auto-generated by uv; large (~2k lines) and findings are
# not actionable since dependency versions are managed via pyproject.toml.
uv.lock
# Test fixtures and golden files — contain sample AIDLC documents and
# expected outputs for evaluator tests; not production code.
scripts/aidlc-evaluator/test_cases/
# CodeBuild build specification files — scanned separately as part of the
# CI pipeline's own review process.
.codebuild/
# Gitleaks baseline — records pre-existing known findings so gitleaks can
# detect only *new* secrets. NOTE: the baseline file includes matched text
# from findings (the "Secret" and "Match" fields), so treat it as sensitive.
# Current entries are all synthetic test credentials from test_credential_scrubber.py.
.gitleaks-baseline.json