Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: add Risk Engine configuration #2

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

feat: add Risk Engine configuration #2

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
51 changes: 51 additions & 0 deletions .platform/.riskEngineConfig.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,51 @@
riskThreshold: 30
groupConfigProfile: TelusDigital
automatedReleaseApproval: false
# The default configuration for Risk Engine will run any configured plugins but
# cannot exempt an application from the normal release approval process established.
# To learn more about having your Risk Engine configuration approved for automated release
# See this Documentation:
# https://github.com/telus/sre-risk-engine/blob/main/docs/general/automated-release-process.md
# team:
# Please select the correct role and team name for this application
# See Documentation:
# https://github.com/telus/sre-risk-engine/blob/main/docs/general/risk-config-file-setup.md#team
# role: < Enablement || Outcome >
# name: < MyTELUS || Business || Mobility || HomeSolutions || DigitalCommerce || Platform >

ignoredFiles:
- "package-lock.json"
# Add additional file or folder paths that should be ignored from Risk Engine analysis i.e. generated files with no inherent risk
# e.g. Add a pattern to match mocked files used in testing: - "**/mocks/**"

riskInputs:
- name: gitBranchProtection
- name: innersource
- name: linesChanged
- name: semanticCommit
- name: changedFiles
matchChangesGlobPatterns:
"**/*.*": "low"
# Add Additional Patterns based on the details of your application
# e.g. Add a pattern for the typical files the contain source code: "**/*.js": "medium"
# e.g. Add a pattern for folders in your application that contain CI procedures/workflows: ".github/**": "high"
# e.g. Add a pattern for folders in your application that deployment configuration and scripts: ".platform/openshift/**": "high"
# - name: prDescription
# Please consider customizing this plugin to validate PR descriptions against a template.
# See Documentation:
# https://github.com/telus/sre-risk-engine/blob/main/docs/general/pr-template-setup.md
# - name: testCoverage
# covReportPath: path/to/committed/coverage-summary.json
# The testCoverage plugin requires some application configuration to set up your testing suite to output the correct information for Risk Engine
# Please consider following the Guide documentation here:
# https://github.com/telus/sre-risk-engine/blob/main/docs/api-reference/inputs/test-coverage-input.md
- name: dockerFileHealth
disabled: true
- name: versionsChecker
disabled: true
- name: openshiftTemplateHealth
disabled: true
- name: dynatraceMetricsAnalyzer
disabled: true
- name: dynatraceVulnerabilityAlerts
disabled: true