Skip to content

Commit

Permalink
Merge pull request #328 from govCMS/feature/DEVOPS-519-executable-files
Browse files Browse the repository at this point in the history 
[DEVOPS-519] Add check for executable files
  • Loading branch information
@yusufhm
yusufhm committed Jul 26, 2024
2 parents 4e01b99 + 924047c commit 37c336c
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion shipshape.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,9 +4,14 @@ checks:
severity: high
path: web
disallowed-pattern: '^(adminer|phpmyadmin|bigdump)?\.php$'
- name: '[FILE] Executable files'
severity: normal
path: ./
disallowed-pattern: '.*\.(bin|deb|dmg|elf|exe|msi|sh)+$'
exclude-pattern: '^(vendor|web/core|web/modules/contrib)+.*'
- name: '[FILE] Sensitive public files'
path: web/sites/default/files
disallowed-pattern: '.*\.(sql|php|sh|py|bz2|gz|tar|tgz|zip)?$'
disallowed-pattern: '.*\.(sql|php|sh|py|bz2|gz|tar|tgz|zip)+$'
exclude-pattern: '.*\.(css|js)\.gz?$'
skip-dir:
- private
Expand Down

0 comments on commit 37c336c

Please sign in to comment.