Hello-Scan-Code/config.json at master · taoweidong/Hello-Scan-Code · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
{
  "repo_path": ".",
  "ignore_dirs": [
    ".git",
    "node_modules",
    "venv",
    "__pycache__",
    "build",
    "dist",
    "report",
    "db"
  ],
  "file_extensions": [
    ".py",
    ".js",
    ".java",
    ".cpp",
    ".c",
    ".h",
    ".go",
    ".rs",
    ".php",
    ".cs",
    ".ts",
    ".sql",
    ".html",
    ".css"
  ],
  "plugins": {
    "enabled": [
      "builtin.keyword",
      "builtin.security",
      "builtin.todo",
      "builtin.regex",
      "security.hardcoded_password",
      "security.weak_crypto"
    ],
    "dirs": [
      "src/plugins/custom/"
    ]
  },
  "output": {
    "report_dir": "report/",
    "export_formats": [
      "excel",
      "html"
    ]
  },
  "scan": {
    "timeout": 300,
    "max_file_size": 10485760
  },
  "plugin_configs": {
    "builtin.keyword": {
      "keywords": [
        "TODO",
        "FIXME",
        "BUG",
        "HACK",
        "XXX"
      ],
      "case_sensitive": false
    },
    "builtin.regex": {
      "patterns": [
        {
          "pattern": "eval\\(",
          "rule_id": "EVAL_USAGE",
          "message": "发现eval函数使用",
          "severity": "high",
          "category": "security",
          "suggestion": "避免使用eval函数，考虑使用更安全的替代方案"
        }
      ]
    }
  }
}