secureli
secureli copied to clipboard
Create command for users to submit custom regex pattern for security scan
As a user, I want to be able to have SeCureLi scan for custom patterns specific for my security concerns
AC
- Add a new item to
.secureli.yaml
calledcustom_scan_patterns
that is an empty list - ~~Create a new command called
add_custom_scan_pattern
(name suggestions?)~~ Expand Update command to include pattern additions - Command accepts a flag --new_pattern which can be added multiple times, each flag accepts a string
- User input is checked and must be a regex pattern. if it pass the check, it is saved in config as an item in custom_scan_patterns a. If it fails, present error message to user
- When the pre-commit scan runs, in addition to default security checks, and the items check by work completed in #435 also check for all patterns in custom_scan_patterns
- Add documentation - Readme
Notes
- Rather than creating this as a new command, we could make it a prompt as a part of init and/or update