Skip to content

Commit ee0e72f

Browse files
committed
Update memory_bank.md
1 parent 1a05f38 commit ee0e72f

1 file changed

Lines changed: 23 additions & 4 deletions

File tree

memory_bank.md

Lines changed: 23 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -28,10 +28,29 @@ We adopted a **Feature-Based Architecture** to ensure scalability and ease of fu
2828
- **Entropy Check**: Calculates Shannon entropy to reduce false positives (e.g., detecting random high-entropy strings).
2929
- **Masking**: Automatically masks detected secrets (e.g., `AKIA****************`) to prevent leakage in logs.
3030

31-
### 6. CI/CD Integration (`--ci`)
32-
- **CI Mode**: Disables interactive elements (progress bars).
33-
- **Exit Codes**: Returns exit code 1 if issues exceed the `--fail-on` threshold (default: HIGH).
34-
- **GitHub Actions**: Workflow file included for automated scanning.
31+
### 3. Config Scanner (`openaudit.features.config`)
32+
- **Infrastructure Code**: specific checks for `.env`, `Dockerfile`, and `docker-compose.yml`.
33+
- **Masking**: Enhanced masking for config values (keeping keys visible).
34+
35+
### 4. Developer Experience & CLI (DX)
36+
- **Smart Ignores**: Supports `.oaignore` (and `.gitignore` syntax) via `pathspec`.
37+
- **UX**: Progress bars, scan duration, and colored severity legends.
38+
- **Duration**: Timings displayed for performance visibility.
39+
40+
### 5. Rule System v2
41+
- **Confidence Scoring**: Rules now have `confidence` (LOW, MEDIUM, HIGH) to better triage findings.
42+
- **Validation**: RulesEngine validates regex and schema on load.
43+
- **Documentation**: Comprehensive `rules/README.md` for contributors.
44+
45+
### 6. CI/CD & Reporting
46+
- **CI Mode**: `--ci` flag for non-interactive runs with strict exit codes.
47+
- **Formats**: Supports `JSON` and `Rich Console` outputs.
48+
- **GitHub Actions**: Ready-to-use workflow template.
49+
50+
### 7. Packaging & Distribution
51+
- **PyPI Ready**: Configured with `pyproject.toml` and `setuptools`.
52+
- **Standalone**: Can be installed via `pip install .` and run as `openaudit`.
53+
- **Bundled Rules**: Default security rules are packaged with the library.
3554

3655
## 📊 Status
3756
- [x] Project Skeleton Created

0 commit comments

Comments
 (0)