From 0b0fca05717a9dca4e42385e63821012ad619127 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lu=C3=ADs=20Ventuzelos?= <46198926+LuisVentuzelos@users.noreply.github.com> Date: Wed, 27 Nov 2024 09:40:10 +0000 Subject: [PATCH 1/6] Update config.yaml --- .checkmarx/config.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.checkmarx/config.yaml b/.checkmarx/config.yaml index 4c45b32..341bf15 100644 --- a/.checkmarx/config.yaml +++ b/.checkmarx/config.yaml @@ -14,3 +14,4 @@ checkmarx: sast: presetName: 'Checkmarx Default' incremental: 'true' + lightQueries: 'true' From 24b7f50a384df16e6fb14da945843ca4b4519667 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lu=C3=ADs=20Ventuzelos?= <46198926+LuisVentuzelos@users.noreply.github.com> Date: Wed, 27 Nov 2024 09:48:46 +0000 Subject: [PATCH 2/6] Update config.yaml --- .checkmarx/config.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.checkmarx/config.yaml b/.checkmarx/config.yaml index 341bf15..3a3741d 100644 --- a/.checkmarx/config.yaml +++ b/.checkmarx/config.yaml @@ -14,4 +14,4 @@ checkmarx: sast: presetName: 'Checkmarx Default' incremental: 'true' - lightQueries: 'true' + lightQueries: 'false' From e2e19532ef7d5fc822cf75395d7d5f7530c2050c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lu=C3=ADs=20Ventuzelos?= <46198926+LuisVentuzelos@users.noreply.github.com> Date: Wed, 27 Nov 2024 09:53:10 +0000 Subject: [PATCH 3/6] Update config.yaml --- .checkmarx/config.yaml | 28 +++++++++++++++++----------- 1 file changed, 17 insertions(+), 11 deletions(-) diff --git a/.checkmarx/config.yaml b/.checkmarx/config.yaml index 3a3741d..8c9f4a5 100644 --- a/.checkmarx/config.yaml +++ b/.checkmarx/config.yaml @@ -1,17 +1,23 @@ version: 1 +# checkmarx-specific related configuration +# every value in this section is optional checkmarx: + # configure the checkmarx scan parameters for scanning this specific project scan: - #optional - tags: - "fromConfig": "true" - - project: - tags: - "fromConfig": "true" - + # configure the checkmarx scan configurations for scanning this specific project configs: + # configure the SAST related configurations this specific project sast: - presetName: 'Checkmarx Default' - incremental: 'true' - lightQueries: 'false' + # configure the SAST preset name used for this specific project + presetName: 'All' + # configure if this specific project will be run incrementally or will it run a full scan + incremental: 'false' + languageMode: 'multi' + filter: '!*.java,!*.cpp' + engineVerbose: 'true' + sca: + filter: '!*.cpp' + kics: + filter: '*.java' + platforms: 'Ansible,CloudFormation,Dockerfile' From da9d98fe77dfae75d6b52e31997889474f2e66f4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lu=C3=ADs=20Ventuzelos?= Date: Wed, 27 Nov 2024 16:08:37 +0000 Subject: [PATCH 4/6] change yaml --- .checkmarx/{config.yaml => config.yml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename .checkmarx/{config.yaml => config.yml} (100%) diff --git a/.checkmarx/config.yaml b/.checkmarx/config.yml similarity index 100% rename from .checkmarx/config.yaml rename to .checkmarx/config.yml From 48848050f821b66fec6bdb847e92677b214251fb Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lu=C3=ADs=20Ventuzelos?= <46198926+LuisVentuzelos@users.noreply.github.com> Date: Wed, 27 Nov 2024 16:37:06 +0000 Subject: [PATCH 5/6] Update config.yml --- .checkmarx/config.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.checkmarx/config.yml b/.checkmarx/config.yml index 8c9f4a5..cf36953 100644 --- a/.checkmarx/config.yml +++ b/.checkmarx/config.yml @@ -16,6 +16,7 @@ checkmarx: languageMode: 'multi' filter: '!*.java,!*.cpp' engineVerbose: 'true' + lightQueries: 'false' sca: filter: '!*.cpp' kics: From 4ac3ebd82d9ad7b6a84cc05aeea46e707abcac67 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lu=C3=ADs=20Ventuzelos?= <46198926+LuisVentuzelos@users.noreply.github.com> Date: Wed, 27 Nov 2024 16:46:13 +0000 Subject: [PATCH 6/6] Update config.yml --- .checkmarx/config.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.checkmarx/config.yml b/.checkmarx/config.yml index cf36953..e966988 100644 --- a/.checkmarx/config.yml +++ b/.checkmarx/config.yml @@ -16,7 +16,7 @@ checkmarx: languageMode: 'multi' filter: '!*.java,!*.cpp' engineVerbose: 'true' - lightQueries: 'false' + lightQueries: 'true' sca: filter: '!*.cpp' kics: