rallyhealth / conftest-policy-packs Goto Github PK
View Code? Open in Web Editor NEWRego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
Home Page: https://rallyhealth.github.io/conftest-policy-packs/
License: MIT License
Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
Home Page: https://rallyhealth.github.io/conftest-policy-packs/
License: MIT License
Proposed Change to CONTRIBUTING.md:
- *Lua*
+ *Open Policy Agent*
PKGSEC-0001 requires Node projects using a package.json
file to wrap their package name underneath an organization scope. It relies on the is_package_json utility function in lib/packages_functions.rego
.
The only required top-level fields in a package.json
file are name
and version
, so those are checked for existence to determine whether the JSON file we're evaluating is a package.json
file. This is not granular enough and the policy incorrectly flags unrelated JSON files with this policy.
The "best" way to resolve this would be for conftest to include file metadata in the data
available when evaluating a policy. I originally filed this against opa with open-policy-agent/opa#3662 and never followed up to file an issue with conftest. I'll do that now.
Not sure if there are alternative solutions to make the policy more accurate.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.