Skip to content

Commit 8780173

Browse files
committed
LCORE-2845: Instruct CodeRabbitAI to perform security and secret handling
1 parent 1e60f35 commit 8780173

1 file changed

Lines changed: 12 additions & 0 deletions

File tree

.coderabbit.yaml

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -98,6 +98,18 @@ reviews:
9898
9999
Per issue: file, lines, risk, fix category. If clean, mark PASSED.
100100
101+
- name: 'Security and Secret Handling'
102+
mode: error
103+
instructions: |
104+
BLOCKING. Flag:
105+
1. Secrets/tokens logged in plaintext or hardcoded in source.
106+
2. Missing auth/authz on API endpoints.
107+
3. Injection vulnerabilities (SQL, command, path traversal).
108+
4. Sensitive data leaked in API responses, WebSocket messages, or logs.
109+
5. K8s Secrets and RH secrets missing OwnerReferences.
110+
111+
Per violation: file, lines, risk. If clean, mark PASSED.
112+
101113
# ---------------------------------------------------------------------------
102114
# Tools
103115
# ---------------------------------------------------------------------------

0 commit comments

Comments
 (0)