Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add exclusion patterns for curl-unecrypted-url #71

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add exclusion patterns for curl-unecrypted-url #71

wants to merge 1 commit into from

Conversation

fruechel-canva
Copy link

curl-unecrypted-url produces a lot of false positives on repositories with lots of cloud infrastructure code for AWS or GCP. These providers use link local URLs via HTTP without TLS. This is equivalent to localhost patterns.

@fruechel-canva
Add exclusion patterns for curl-unecrypted-url
a4dadd0 
curl-unecrypted-url produces a lot of false positives on repositories
with lots of cloud infrastructure code for AWS or GCP. These providers
use link local URLs via HTTP without TLS. This is equivalent to
localhost patterns.
@CLAassistant
Copy link

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

GrosQuildu
GrosQuildu approved these changes Dec 13, 2024
View reviewed changes
Copy link
Collaborator

@GrosQuildu GrosQuildu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks for the PR!

@mschwager
Copy link
Member

LGTM - the one suggestion I have is that we add the AWS IPv6 metadata address too: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-data-retrieval.html#instancedata-inside-access

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@GrosQuildu GrosQuildu GrosQuildu approved these changes

@mschwager mschwager Awaiting requested review from mschwager mschwager is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@fruechel-canva @CLAassistant @mschwager @GrosQuildu