Merge pull request #125 from regulaforensics/sast-fix

KirylKovaliov · web-flow · commit 3a14972ae7bc · 2024-09-17T09:29:48.000+02:00
Fix SAST scan vuln
diff --git a/.github/workflows/sast.yaml b/.github/workflows/sast.yaml
@@ -16,7 +16,7 @@ env:
   # List of paths (space separated) to ignore
   # Supports PATTERNS
   # EXCLUDE_PATHS: 'foo bar/baz file.txt dir/*.yml'
-  EXCLUDE_PATHS: ''
+  EXCLUDE_PATHS: '*docker-compose.y*ml'
   # List of rules (space separated) to ignore
   # EXCLUDE_RULES: 'generic.secrets.security.detected-aws-account-id.detected-aws-account-id'
   # See https://github.com/semgrep/semgrep-rules for rules registry
diff --git a/docker-compose.yml b/docker-compose.yml
@@ -4,7 +4,7 @@ services:
   docreader:
     image: regulaforensics/docreader:latest
     volumes:
-      - ./regula.license:/app/extBin/unix_x64/regula.license      
+      - ./regula.license:/app/extBin/unix_x64/regula.license
   nginx:
     image: nginx:alpine
     ports:
@@ -13,4 +13,4 @@ services:
       - ./conf/nginx.conf:/etc/nginx/nginx.conf
       - ./conf/.htpasswd:/etc/nginx/.htpasswd
     depends_on:
-      - docreader
+      - docreader
