Skip to content

Commit 3a2d71d

Browse files
authored
Merge pull request #95 from devgateway/fixing-removed-commments
refactor: remove Gitleaks, clean up entrypoint scripts, and update fo…
2 parents d29f62c + a4910e0 commit 3a2d71d

7 files changed

Lines changed: 16 additions & 72 deletions

File tree

.github/copilot-instructions.md

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
Base Behavior
2+
Continue to perform your standard code review, summarization, and bug detection as usual.
3+
Do not suppress your default helpful observations or summaries.
4+
5+
Sensitive data review
6+
Flag and require review and possible removal, whenever you detect PII, passwords, keys, potential client/private data, and/or related sensitive data committed to the repository.
7+
8+
Dependencies license review
9+
Flag and require review and possible removal or replace with alternatives, whenever you detect directly added licensed code or dependency libraries being imported through dependency managers (maven, npm, pip, etc), that are not in line with the current repository license terms, as saved in the LICENSE file in the project root. For this particular repository, the license being used right now is Apache License Version 2.0. Flag any dependency and/or code imported or used, that is licensed with a commercial license, as particularly high risk. Flag any AGPL or similar strong copyleft licenses as very hi risk. Only open source licenses are allowed that are not strong copyleft. Flag dependencies with missing/unknown licenses.
10+
11+
Security Review
12+
Perform a review of potential issues exposing vulnerabilities in code that can be easily exploited by third parties, if they have access to this repository source code - unprotected endpoints or ports, simple default passwords, unsafe authentication methods, unencrypted communication, etc.

.github/workflows/secret-scan.yml

Lines changed: 0 additions & 22 deletions
This file was deleted.

.gitignore

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -18,3 +18,4 @@ target
1818
# Secret purge script and artifacts
1919
purge-secrets.sh
2020
replacements.txt
21+
.vscode

.gitleaks.toml

Lines changed: 0 additions & 27 deletions
This file was deleted.

.pre-commit-config.yaml

Lines changed: 0 additions & 12 deletions
This file was deleted.

docker-compose.yml

Lines changed: 3 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -3,7 +3,7 @@ services:
33
image: postgres:16.8
44
environment:
55
POSTGRES_USER: postgres
6-
# SECURITY: Override with a strong password in production via POSTGRES_PASSWORD env var
6+
# REMOVED*** SECURITY: Override with a strong password in production via POSTGRES_PASSWORD env var
77
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-admin}
88
POSTGRES_DB: viz
99
ports:
@@ -16,7 +16,6 @@ services:
1616
networks:
1717
backend-api:
1818

19-
2019
eureka:
2120
build:
2221
context: ./registry
@@ -36,15 +35,13 @@ services:
3635
networks:
3736
backend-api:
3837

39-
4038
api-gateway:
4139
build:
4240
context: ./api-gateway
4341
dockerfile: Dockerfile
4442
environment:
4543
SPRING_DATASOURCE_URL: "jdbc:postgresql://postgres:5432/viz"
46-
SPRING_DATASOURCE_USERNAME: "postgres"
47-
# SECURITY: Override with a strong password via SPRING_DATASOURCE_PASSWORD env var in production
44+
SPRING_DATASOURCE_USERNAME: "postgres" # SECURITY: Override with a strong password via SPRING_DATASOURCE_PASSWORD env var in production
4845
SPRING_DATASOURCE_PASSWORD: ${SPRING_DATASOURCE_PASSWORD:-admin}
4946
JAVA_OPTS: "-Xmx512m -Xms512m -XX:+UseG1GC -XX:InitialHeapSize=512m -XX:MaxHeapSize=512m -XX:+ParallelRefProcEnabled"
5047
ports:
@@ -55,7 +52,6 @@ services:
5552
networks:
5653
backend-api:
5754

58-
5955
api-security:
6056
build:
6157
context: ./api-security
@@ -71,7 +67,6 @@ services:
7167
networks:
7268
backend-api:
7369

74-
7570
superset-proxy:
7671
build:
7772
context: ./superset-proxy
@@ -88,7 +83,7 @@ services:
8883
SPRING_APPLICATION_NAME: "superset-proxy"
8984
SPRING_DATA_REDIS_HOST: "cache"
9085
SPRING_DATA_REDIS_PORT: "6379"
91-
# SECURITY: Override with a strong password via SPRING_DATA_REDIS_PASSWORD env var in production
86+
#SECURITY: Override with a strong password via SPRING_DATA_REDIS_PASSWORD env var in production
9287
SPRING_DATA_REDIS_PASSWORD: ${SPRING_DATA_REDIS_PASSWORD:-admin}
9388
SPRING_DATA_CACHE_TYPE: "redis"
9489
ports:
@@ -100,7 +95,6 @@ services:
10095
networks:
10196
backend-api:
10297

103-
10498
cache:
10599
image: redis:6.2-alpine
106100
restart: always
@@ -115,6 +109,5 @@ services:
115109
volumes:
116110
cache:
117111

118-
119112
networks:
120113
backend-api:

gitleaks-report.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

0 commit comments

Comments
 (0)