feat(platform): live-wire AGB v2 + DSE v3 + Architektur-Tab (#29)
CI / detect-changes (push) Successful in 7s
CI / branch-name (push) Has been skipped
CI / guardrail-integrity (push) Has been skipped
CI / secret-scan (push) Has been skipped
CI / dep-audit (push) Has been skipped
CI / sbom-scan (push) Has been skipped
CI / build-sha-integrity (push) Successful in 9s
CI / validate-canonical-controls (push) Successful in 12s
CI / loc-budget (push) Successful in 24s
CI / go-lint (push) Has been skipped
CI / python-lint (push) Has been skipped
CI / nodejs-lint (push) Has been skipped
CI / nodejs-build (push) Successful in 3m11s
CI / test-go (push) Has been skipped
CI / iace-gt-coverage (push) Has been skipped
CI / test-python-backend (push) Successful in 24s
CI / test-python-document-crawler (push) Has been skipped
CI / test-python-dsms-gateway (push) Has been skipped
CI / detect-changes (push) Successful in 7s
CI / branch-name (push) Has been skipped
CI / guardrail-integrity (push) Has been skipped
CI / secret-scan (push) Has been skipped
CI / dep-audit (push) Has been skipped
CI / sbom-scan (push) Has been skipped
CI / build-sha-integrity (push) Successful in 9s
CI / validate-canonical-controls (push) Successful in 12s
CI / loc-budget (push) Successful in 24s
CI / go-lint (push) Has been skipped
CI / python-lint (push) Has been skipped
CI / nodejs-lint (push) Has been skipped
CI / nodejs-build (push) Successful in 3m11s
CI / test-go (push) Has been skipped
CI / iace-gt-coverage (push) Has been skipped
CI / test-python-backend (push) Successful in 24s
CI / test-python-document-crawler (push) Has been skipped
CI / test-python-dsms-gateway (push) Has been skipped
AGB v2 (decision_method routing, 71%FP->~0) + DSE v3 (4-layer, recovered from container) + Architektur-Tab into /sdk/agent live path. Incl CI robustness (detect-changes.sh + PR-head checkout) + security (hardcoded Qdrant key removed, gitleaks allowlist). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit was merged in pull request #29.
This commit is contained in:
@@ -0,0 +1,21 @@
|
||||
# gitleaks configuration.
|
||||
# Keeps gitleaks' default ruleset and adds an allowlist for known FALSE POSITIVES
|
||||
# that surfaced once the CI checkout was fixed (secret-scan had never actually run
|
||||
# on a PR before). Real leaked credentials are removed in code, NOT allowlisted.
|
||||
|
||||
[extend]
|
||||
useDefault = true
|
||||
|
||||
[allowlist]
|
||||
description = "Documentation curl examples, env templates, and non-secret identifiers"
|
||||
paths = [
|
||||
# API reference pages — curl examples with placeholder tokens, not real secrets
|
||||
'''developer-portal/app/api/.*''',
|
||||
'''developer-portal/app/development/.*''',
|
||||
# Template env file — placeholder dev values (e.g. breakpilot123)
|
||||
'''\.env\.example$''',
|
||||
# Seed data: "rule_key" identifiers, not credentials
|
||||
'''backend-compliance/compliance/data/template_rule_seed_data\.py$''',
|
||||
# SDK deploy template — MINIO placeholder password
|
||||
'''breakpilot-compliance-sdk/packages/cli/src/commands/deploy\.ts$''',
|
||||
]
|
||||
Reference in New Issue
Block a user