├── .github ├── CODEOWNERS ├── dependabot.yml └── workflows │ ├── lint.yaml │ ├── test.yml │ ├── trivy.yml │ └── update.yaml ├── .gitignore ├── CONTRIBUTING.md ├── LICENSE ├── README.md ├── Taskfile.yml ├── data-sources ├── ghapi.yaml ├── openssf_bestpractices.yaml ├── osv.yaml ├── security-insights.yaml ├── sonatype-oss-index.yaml └── spdx.yaml ├── docs ├── rule-type-quick-reference.md └── writing-rule-types.md ├── go.mod ├── go.sum ├── profiles ├── github │ ├── README.md │ ├── artifact_attestation_slsa.yaml │ ├── artifacts │ │ ├── artifact-signature-extended.yaml │ │ └── artifact-signature-simple.yaml │ ├── branch-protection.yaml │ ├── dependabot_ghactions.yaml │ ├── dependabot_go.yaml │ ├── dependabot_npm.yaml │ ├── dependabot_pip.yaml │ ├── dependabot_rust.yaml │ ├── dependencies.yaml │ ├── ghas.yaml │ ├── homoglyphs.yaml │ ├── openssf_scorecard.yaml │ ├── openssf_security_baseline.yaml │ ├── profile.yaml │ ├── repo_security.yaml │ ├── scorecard-action.yaml │ ├── stacklok-health-check.yaml │ ├── stacklok-lightweight-dependabot.yaml │ ├── stacklok-profile-remediate.yaml │ ├── trivy.yaml │ └── workflow_security.yaml └── gitlab │ ├── gitlab_auto_devops.yaml │ └── profile.yaml ├── rule-types ├── common │ ├── dockerfile_no_latest_tag.yaml │ ├── enforce_file.test.yaml │ ├── enforce_file.testdata │ │ └── file_present │ │ │ └── README │ ├── enforce_file.yaml │ ├── license.test.yaml │ ├── license.testdata │ │ ├── license_doesnt_match │ │ │ └── LICENSE │ │ └── license_should_be_mit │ │ │ └── LICENSE │ ├── license.yaml │ ├── osv_vulnerabilities.yaml │ ├── python_lock_file_exists.test.yaml │ ├── python_lock_file_exists.testdata │ │ ├── no_lock │ │ │ └── pyproject.toml │ │ ├── pdm_lock │ │ │ ├── pdm.lock │ │ │ └── pyproject.toml │ │ ├── pinned_requirements_txt │ │ │ └── requirements.txt │ │ ├── pipfile_lock │ │ │ ├── Pipfile │ │ │ └── Pipfile.lock │ │ ├── poetry_lock │ │ │ ├── poetry.lock │ │ │ └── pyproject.toml │ │ └── some_unpinned_requirements_txt │ │ │ └── requirements.txt │ ├── python_lock_file_exists.yaml │ ├── require_pre_commit_to_be_configured.test.yaml │ ├── require_pre_commit_to_be_configured.testdata │ │ ├── correct │ │ │ └── .pre-commit-config.yaml │ │ └── misconfigured │ │ │ └── .pre-commit-config.yaml │ ├── require_pre_commit_to_be_configured.yaml │ └── sonatype_oss_index_vulnerabilities.yaml ├── github │ ├── README.md │ ├── actions_check_default_permissions.yaml │ ├── actions_check_pinned_tags.yaml │ ├── allowed_selected_actions.yaml │ ├── artifact_attestation_slsa.yaml │ ├── artifact_signature.yaml │ ├── automatic_branch_deletion.yaml │ ├── branch_protection_allow_deletions.test.yaml │ ├── branch_protection_allow_deletions.yaml │ ├── branch_protection_allow_force_pushes.test.yaml │ ├── branch_protection_allow_force_pushes.yaml │ ├── branch_protection_allow_fork_syncing.yaml │ ├── branch_protection_enabled.yaml │ ├── branch_protection_enforce_admins.yaml │ ├── branch_protection_lock_branch.yaml │ ├── branch_protection_require_conversation_resolution.yaml │ ├── branch_protection_require_linear_history.yaml │ ├── branch_protection_require_pull_request_approving_review_count.yaml │ ├── branch_protection_require_pull_request_code_owners_review.yaml │ ├── branch_protection_require_pull_request_dismiss_stale_reviews.yaml │ ├── branch_protection_require_pull_request_last_push_approval.yaml │ ├── branch_protection_require_pull_requests.yaml │ ├── branch_protection_require_signatures.yaml │ ├── codeql_enabled.yaml │ ├── default_workflow_permissions.yaml │ ├── dependabot_configured.yaml │ ├── github_actions_allowed.yaml │ ├── golangci-lint_github_action.test.yaml │ ├── golangci-lint_github_action.testdata │ │ ├── repo_with_golangci-lint_gh_action │ │ │ └── .github │ │ │ │ └── workflows │ │ │ │ └── positive_mock.yml │ │ └── repo_without_golangci-lint_gh_action │ │ │ └── .github │ │ │ └── workflows │ │ │ └── negative_mock.yml │ ├── golangci-lint_github_action.yaml │ ├── grype_github_action_scan_container_image.test.yaml │ ├── grype_github_action_scan_container_image.testdata │ │ ├── action_enabled │ │ │ └── .github │ │ │ │ └── workflows │ │ │ │ └── wf.yml │ │ ├── action_enabled_not_for_container_image_scanning │ │ │ └── .github │ │ │ │ └── workflows │ │ │ │ └── wf.yml │ │ └── action_missing │ │ │ └── .github │ │ │ └── workflows │ │ │ └── wf.yml │ ├── grype_github_action_scan_container_image.yaml │ ├── grype_github_action_scan_repo.test.yaml │ ├── grype_github_action_scan_repo.testdata │ │ ├── action_enabled │ │ │ └── .github │ │ │ │ └── workflows │ │ │ │ └── wf.yml │ │ ├── action_enabled_not_for_repo_scanning │ │ │ └── .github │ │ │ │ └── workflows │ │ │ │ └── wf.yml │ │ └── action_missing │ │ │ └── .github │ │ │ └── workflows │ │ │ └── wf.yml │ ├── grype_github_action_scan_repo.yaml │ ├── invisible_characters_check.yaml │ ├── mixed_scripts_check.yaml │ ├── no_binaries_in_repo.yaml │ ├── no_open_security_advisories.yaml │ ├── openssf_bestpractices.yaml │ ├── permissive_license.yaml │ ├── pr_trusty_check.yaml │ ├── pr_vulnerability_check.yaml │ ├── repo_action_allow_list.yaml │ ├── repo_issues_enabled.test.yaml │ ├── repo_issues_enabled.testdata │ │ ├── disabled.json │ │ ├── enabled.json │ │ └── notfound.json │ ├── repo_issues_enabled.yaml │ ├── repo_visibility.test.yaml │ ├── repo_visibility.testdata │ │ ├── notfound.json │ │ ├── private.json │ │ └── public.json │ ├── repo_visibility.yaml │ ├── repo_workflow_access_level.yaml │ ├── scorecard_enabled.yaml │ ├── secret_push_protection.yaml │ ├── secret_scanning.test.yaml │ ├── secret_scanning.testdata │ │ ├── disabled.json │ │ ├── enabled.json │ │ ├── notfound.json │ │ └── private-enabled.json │ ├── secret_scanning.yaml │ ├── security_insights.yaml │ ├── security_insights_dep_policy.yaml │ ├── security_policy.yaml │ ├── source_code_is_public.yaml │ ├── talisman_secrets_scanning.test.yaml │ ├── talisman_secrets_scanning.testdata │ │ ├── correct │ │ │ └── .pre-commit-config.yaml │ │ └── misconfigured │ │ │ └── .pre-commit-config.yaml │ ├── talisman_secrets_scanning.yaml │ ├── trivy_action_enabled.yaml │ ├── trufflehog_github_action.test.yaml │ ├── trufflehog_github_action.testdata │ │ ├── github_action_with_trufflehog │ │ │ └── .github │ │ │ │ └── workflows │ │ │ │ └── trufflehog.yaml │ │ └── github_action_without_trufflehog │ │ │ └── .github │ │ │ └── workflows │ │ │ └── not-trufflehog.yaml │ ├── trufflehog_github_action.yaml │ ├── workflow_no_pull_request_target.yaml │ └── workflow_pull_request.yaml └── gitlab │ ├── gitlab_dependency_scanning_enabled.yaml │ ├── gitlab_pipeline_secret_detection_enabled.yaml │ ├── gitlab_protect_branch.yaml │ └── gitlab_require_merge_requests.yaml ├── rules_test.go └── security-baseline ├── data-sources ├── ghapi.yaml └── spdx.yaml ├── profiles └── security-baseline-level-1.yaml └── rule-types └── github ├── osps-ac-02-01.test.yaml ├── osps-ac-02-01.yaml ├── osps-ac-03-01.test.yaml ├── osps-ac-03-01.yaml ├── osps-ac-03-02.test.yaml ├── osps-ac-03-02.yaml ├── osps-br-01-01.test.yaml ├── osps-br-01-01.testdata ├── no_workflows │ └── README.md ├── safe_workflows │ └── .github │ │ └── workflows │ │ └── pr_test.yaml ├── script_injection │ └── .github │ │ └── workflows │ │ └── pr_title.yaml └── unsafe_checkout │ └── .github │ └── workflows │ ├── pr_test.yaml │ └── pr_workflow.yaml ├── osps-br-01-01.yaml ├── osps-br-03-01.test.yaml ├── osps-br-03-01.yaml ├── osps-do-01-01.yaml ├── osps-do-02-01.test.yaml ├── osps-do-02-01.yaml ├── osps-do-04-01.test.yaml ├── osps-do-04-01.testdata ├── no_support │ └── README.md ├── readme_with_support │ └── readme.md ├── support_eox_file │ └── nested │ │ └── SUPPORT.eox └── support_md_file │ └── SUPPORT.md ├── osps-do-04-01.yaml ├── osps-gv-02-01.yaml ├── osps-gv-03-01.test.yaml ├── osps-gv-03-01.testdata ├── contributing_file │ └── CONTRIBUTING.md ├── contributing_file_no_extension │ └── CONTRIBUTING ├── contributing_folder │ └── CONTRIBUTING │ │ └── myfile └── no_data │ └── README.md ├── osps-gv-03-01.yaml ├── osps-le-02-01.yaml ├── osps-le-02-02.yaml ├── osps-le-03-01.test.yaml ├── osps-le-03-01.testdata ├── copying_file │ └── COPYING ├── license_file │ └── LICENSE.md ├── license_file_no_extension │ └── LICENSE ├── license_folder │ └── LICENSE │ │ └── myfile └── no_data │ └── foo ├── osps-le-03-01.yaml ├── osps-le-03-02.yaml ├── osps-qa-01-01.test.yaml ├── osps-qa-01-01.yaml ├── osps-qa-01-02.yaml ├── osps-qa-02-01.test.yaml ├── osps-qa-02-01.testdata ├── gemfile_no_lock │ └── Gemfile ├── gemfile_with_lock │ ├── Gemfile │ └── Gemfile.lock ├── go_mod_no_go_sum │ └── go.mod ├── go_mod_with_go_sum │ ├── go.mod │ └── go.sum ├── package_json_no_lock │ └── package.json ├── package_json_with_package_lock │ ├── package-lock.json │ └── package.json └── package_json_with_yarn_lock │ ├── package.json │ └── yarn.lock ├── osps-qa-02-01.yaml ├── osps-qa-05-01.yaml └── osps-vm-05-01.yaml /.github/CODEOWNERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/.github/CODEOWNERS -------------------------------------------------------------------------------- /.github/dependabot.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/.github/dependabot.yml -------------------------------------------------------------------------------- /.github/workflows/lint.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/.github/workflows/lint.yaml -------------------------------------------------------------------------------- /.github/workflows/test.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/.github/workflows/test.yml -------------------------------------------------------------------------------- /.github/workflows/trivy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/.github/workflows/trivy.yml -------------------------------------------------------------------------------- /.github/workflows/update.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/.github/workflows/update.yaml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | .idea/ -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/README.md -------------------------------------------------------------------------------- /Taskfile.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/Taskfile.yml -------------------------------------------------------------------------------- /data-sources/ghapi.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/data-sources/ghapi.yaml -------------------------------------------------------------------------------- /data-sources/openssf_bestpractices.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/data-sources/openssf_bestpractices.yaml -------------------------------------------------------------------------------- /data-sources/osv.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/data-sources/osv.yaml -------------------------------------------------------------------------------- /data-sources/security-insights.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/data-sources/security-insights.yaml -------------------------------------------------------------------------------- /data-sources/sonatype-oss-index.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/data-sources/sonatype-oss-index.yaml -------------------------------------------------------------------------------- /data-sources/spdx.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/data-sources/spdx.yaml -------------------------------------------------------------------------------- /docs/rule-type-quick-reference.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/docs/rule-type-quick-reference.md -------------------------------------------------------------------------------- /docs/writing-rule-types.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/docs/writing-rule-types.md -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/go.sum -------------------------------------------------------------------------------- /profiles/github/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/README.md -------------------------------------------------------------------------------- /profiles/github/artifact_attestation_slsa.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/artifact_attestation_slsa.yaml -------------------------------------------------------------------------------- /profiles/github/artifacts/artifact-signature-extended.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/artifacts/artifact-signature-extended.yaml -------------------------------------------------------------------------------- /profiles/github/artifacts/artifact-signature-simple.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/artifacts/artifact-signature-simple.yaml -------------------------------------------------------------------------------- /profiles/github/branch-protection.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/branch-protection.yaml -------------------------------------------------------------------------------- /profiles/github/dependabot_ghactions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/dependabot_ghactions.yaml -------------------------------------------------------------------------------- /profiles/github/dependabot_go.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/dependabot_go.yaml -------------------------------------------------------------------------------- /profiles/github/dependabot_npm.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/dependabot_npm.yaml -------------------------------------------------------------------------------- /profiles/github/dependabot_pip.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/dependabot_pip.yaml -------------------------------------------------------------------------------- /profiles/github/dependabot_rust.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/dependabot_rust.yaml -------------------------------------------------------------------------------- /profiles/github/dependencies.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/dependencies.yaml -------------------------------------------------------------------------------- /profiles/github/ghas.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/ghas.yaml -------------------------------------------------------------------------------- /profiles/github/homoglyphs.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/homoglyphs.yaml -------------------------------------------------------------------------------- /profiles/github/openssf_scorecard.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/openssf_scorecard.yaml -------------------------------------------------------------------------------- /profiles/github/openssf_security_baseline.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/openssf_security_baseline.yaml -------------------------------------------------------------------------------- /profiles/github/profile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/profile.yaml -------------------------------------------------------------------------------- /profiles/github/repo_security.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/repo_security.yaml -------------------------------------------------------------------------------- /profiles/github/scorecard-action.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/scorecard-action.yaml -------------------------------------------------------------------------------- /profiles/github/stacklok-health-check.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/stacklok-health-check.yaml -------------------------------------------------------------------------------- /profiles/github/stacklok-lightweight-dependabot.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/stacklok-lightweight-dependabot.yaml -------------------------------------------------------------------------------- /profiles/github/stacklok-profile-remediate.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/stacklok-profile-remediate.yaml -------------------------------------------------------------------------------- /profiles/github/trivy.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/trivy.yaml -------------------------------------------------------------------------------- /profiles/github/workflow_security.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/github/workflow_security.yaml -------------------------------------------------------------------------------- /profiles/gitlab/gitlab_auto_devops.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/gitlab/gitlab_auto_devops.yaml -------------------------------------------------------------------------------- /profiles/gitlab/profile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/profiles/gitlab/profile.yaml -------------------------------------------------------------------------------- /rule-types/common/dockerfile_no_latest_tag.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/dockerfile_no_latest_tag.yaml -------------------------------------------------------------------------------- /rule-types/common/enforce_file.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/enforce_file.test.yaml -------------------------------------------------------------------------------- /rule-types/common/enforce_file.testdata/file_present/README: -------------------------------------------------------------------------------- 1 | Test content -------------------------------------------------------------------------------- /rule-types/common/enforce_file.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/enforce_file.yaml -------------------------------------------------------------------------------- /rule-types/common/license.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/license.test.yaml -------------------------------------------------------------------------------- /rule-types/common/license.testdata/license_doesnt_match/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/license.testdata/license_doesnt_match/LICENSE -------------------------------------------------------------------------------- /rule-types/common/license.testdata/license_should_be_mit/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/license.testdata/license_should_be_mit/LICENSE -------------------------------------------------------------------------------- /rule-types/common/license.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/license.yaml -------------------------------------------------------------------------------- /rule-types/common/osv_vulnerabilities.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/osv_vulnerabilities.yaml -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.test.yaml -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/no_lock/pyproject.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/no_lock/pyproject.toml -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/pdm_lock/pdm.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/pdm_lock/pdm.lock -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/pdm_lock/pyproject.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/pdm_lock/pyproject.toml -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/pinned_requirements_txt/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/pinned_requirements_txt/requirements.txt -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/pipfile_lock/Pipfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/pipfile_lock/Pipfile -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/pipfile_lock/Pipfile.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/pipfile_lock/Pipfile.lock -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/poetry_lock/poetry.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/poetry_lock/poetry.lock -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/poetry_lock/pyproject.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/poetry_lock/pyproject.toml -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.testdata/some_unpinned_requirements_txt/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.testdata/some_unpinned_requirements_txt/requirements.txt -------------------------------------------------------------------------------- /rule-types/common/python_lock_file_exists.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/python_lock_file_exists.yaml -------------------------------------------------------------------------------- /rule-types/common/require_pre_commit_to_be_configured.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/require_pre_commit_to_be_configured.test.yaml -------------------------------------------------------------------------------- /rule-types/common/require_pre_commit_to_be_configured.testdata/correct/.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/require_pre_commit_to_be_configured.testdata/correct/.pre-commit-config.yaml -------------------------------------------------------------------------------- /rule-types/common/require_pre_commit_to_be_configured.testdata/misconfigured/.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/require_pre_commit_to_be_configured.testdata/misconfigured/.pre-commit-config.yaml -------------------------------------------------------------------------------- /rule-types/common/require_pre_commit_to_be_configured.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/require_pre_commit_to_be_configured.yaml -------------------------------------------------------------------------------- /rule-types/common/sonatype_oss_index_vulnerabilities.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/common/sonatype_oss_index_vulnerabilities.yaml -------------------------------------------------------------------------------- /rule-types/github/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/README.md -------------------------------------------------------------------------------- /rule-types/github/actions_check_default_permissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/actions_check_default_permissions.yaml -------------------------------------------------------------------------------- /rule-types/github/actions_check_pinned_tags.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/actions_check_pinned_tags.yaml -------------------------------------------------------------------------------- /rule-types/github/allowed_selected_actions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/allowed_selected_actions.yaml -------------------------------------------------------------------------------- /rule-types/github/artifact_attestation_slsa.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/artifact_attestation_slsa.yaml -------------------------------------------------------------------------------- /rule-types/github/artifact_signature.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/artifact_signature.yaml -------------------------------------------------------------------------------- /rule-types/github/automatic_branch_deletion.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/automatic_branch_deletion.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_allow_deletions.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_allow_deletions.test.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_allow_deletions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_allow_deletions.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_allow_force_pushes.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_allow_force_pushes.test.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_allow_force_pushes.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_allow_force_pushes.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_allow_fork_syncing.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_allow_fork_syncing.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_enabled.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_enforce_admins.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_enforce_admins.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_lock_branch.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_lock_branch.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_conversation_resolution.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_conversation_resolution.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_linear_history.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_linear_history.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_pull_request_approving_review_count.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_pull_request_approving_review_count.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_pull_request_code_owners_review.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_pull_request_code_owners_review.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_pull_request_dismiss_stale_reviews.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_pull_request_dismiss_stale_reviews.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_pull_request_last_push_approval.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_pull_request_last_push_approval.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_pull_requests.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_pull_requests.yaml -------------------------------------------------------------------------------- /rule-types/github/branch_protection_require_signatures.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/branch_protection_require_signatures.yaml -------------------------------------------------------------------------------- /rule-types/github/codeql_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/codeql_enabled.yaml -------------------------------------------------------------------------------- /rule-types/github/default_workflow_permissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/default_workflow_permissions.yaml -------------------------------------------------------------------------------- /rule-types/github/dependabot_configured.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/dependabot_configured.yaml -------------------------------------------------------------------------------- /rule-types/github/github_actions_allowed.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/github_actions_allowed.yaml -------------------------------------------------------------------------------- /rule-types/github/golangci-lint_github_action.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/golangci-lint_github_action.test.yaml -------------------------------------------------------------------------------- /rule-types/github/golangci-lint_github_action.testdata/repo_with_golangci-lint_gh_action/.github/workflows/positive_mock.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/golangci-lint_github_action.testdata/repo_with_golangci-lint_gh_action/.github/workflows/positive_mock.yml -------------------------------------------------------------------------------- /rule-types/github/golangci-lint_github_action.testdata/repo_without_golangci-lint_gh_action/.github/workflows/negative_mock.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/golangci-lint_github_action.testdata/repo_without_golangci-lint_gh_action/.github/workflows/negative_mock.yml -------------------------------------------------------------------------------- /rule-types/github/golangci-lint_github_action.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/golangci-lint_github_action.yaml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_container_image.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_container_image.test.yaml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_container_image.testdata/action_enabled/.github/workflows/wf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_container_image.testdata/action_enabled/.github/workflows/wf.yml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_container_image.testdata/action_enabled_not_for_container_image_scanning/.github/workflows/wf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_container_image.testdata/action_enabled_not_for_container_image_scanning/.github/workflows/wf.yml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_container_image.testdata/action_missing/.github/workflows/wf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_container_image.testdata/action_missing/.github/workflows/wf.yml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_container_image.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_container_image.yaml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_repo.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_repo.test.yaml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_repo.testdata/action_enabled/.github/workflows/wf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_repo.testdata/action_enabled/.github/workflows/wf.yml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_repo.testdata/action_enabled_not_for_repo_scanning/.github/workflows/wf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_repo.testdata/action_enabled_not_for_repo_scanning/.github/workflows/wf.yml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_repo.testdata/action_missing/.github/workflows/wf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_repo.testdata/action_missing/.github/workflows/wf.yml -------------------------------------------------------------------------------- /rule-types/github/grype_github_action_scan_repo.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/grype_github_action_scan_repo.yaml -------------------------------------------------------------------------------- /rule-types/github/invisible_characters_check.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/invisible_characters_check.yaml -------------------------------------------------------------------------------- /rule-types/github/mixed_scripts_check.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/mixed_scripts_check.yaml -------------------------------------------------------------------------------- /rule-types/github/no_binaries_in_repo.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/no_binaries_in_repo.yaml -------------------------------------------------------------------------------- /rule-types/github/no_open_security_advisories.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/no_open_security_advisories.yaml -------------------------------------------------------------------------------- /rule-types/github/openssf_bestpractices.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/openssf_bestpractices.yaml -------------------------------------------------------------------------------- /rule-types/github/permissive_license.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/permissive_license.yaml -------------------------------------------------------------------------------- /rule-types/github/pr_trusty_check.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/pr_trusty_check.yaml -------------------------------------------------------------------------------- /rule-types/github/pr_vulnerability_check.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/pr_vulnerability_check.yaml -------------------------------------------------------------------------------- /rule-types/github/repo_action_allow_list.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_action_allow_list.yaml -------------------------------------------------------------------------------- /rule-types/github/repo_issues_enabled.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_issues_enabled.test.yaml -------------------------------------------------------------------------------- /rule-types/github/repo_issues_enabled.testdata/disabled.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_issues_enabled.testdata/disabled.json -------------------------------------------------------------------------------- /rule-types/github/repo_issues_enabled.testdata/enabled.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_issues_enabled.testdata/enabled.json -------------------------------------------------------------------------------- /rule-types/github/repo_issues_enabled.testdata/notfound.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_issues_enabled.testdata/notfound.json -------------------------------------------------------------------------------- /rule-types/github/repo_issues_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_issues_enabled.yaml -------------------------------------------------------------------------------- /rule-types/github/repo_visibility.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_visibility.test.yaml -------------------------------------------------------------------------------- /rule-types/github/repo_visibility.testdata/notfound.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_visibility.testdata/notfound.json -------------------------------------------------------------------------------- /rule-types/github/repo_visibility.testdata/private.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_visibility.testdata/private.json -------------------------------------------------------------------------------- /rule-types/github/repo_visibility.testdata/public.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_visibility.testdata/public.json -------------------------------------------------------------------------------- /rule-types/github/repo_visibility.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_visibility.yaml -------------------------------------------------------------------------------- /rule-types/github/repo_workflow_access_level.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/repo_workflow_access_level.yaml -------------------------------------------------------------------------------- /rule-types/github/scorecard_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/scorecard_enabled.yaml -------------------------------------------------------------------------------- /rule-types/github/secret_push_protection.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_push_protection.yaml -------------------------------------------------------------------------------- /rule-types/github/secret_scanning.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_scanning.test.yaml -------------------------------------------------------------------------------- /rule-types/github/secret_scanning.testdata/disabled.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_scanning.testdata/disabled.json -------------------------------------------------------------------------------- /rule-types/github/secret_scanning.testdata/enabled.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_scanning.testdata/enabled.json -------------------------------------------------------------------------------- /rule-types/github/secret_scanning.testdata/notfound.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_scanning.testdata/notfound.json -------------------------------------------------------------------------------- /rule-types/github/secret_scanning.testdata/private-enabled.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_scanning.testdata/private-enabled.json -------------------------------------------------------------------------------- /rule-types/github/secret_scanning.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/secret_scanning.yaml -------------------------------------------------------------------------------- /rule-types/github/security_insights.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/security_insights.yaml -------------------------------------------------------------------------------- /rule-types/github/security_insights_dep_policy.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/security_insights_dep_policy.yaml -------------------------------------------------------------------------------- /rule-types/github/security_policy.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/security_policy.yaml -------------------------------------------------------------------------------- /rule-types/github/source_code_is_public.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/source_code_is_public.yaml -------------------------------------------------------------------------------- /rule-types/github/talisman_secrets_scanning.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/talisman_secrets_scanning.test.yaml -------------------------------------------------------------------------------- /rule-types/github/talisman_secrets_scanning.testdata/correct/.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/talisman_secrets_scanning.testdata/correct/.pre-commit-config.yaml -------------------------------------------------------------------------------- /rule-types/github/talisman_secrets_scanning.testdata/misconfigured/.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/talisman_secrets_scanning.testdata/misconfigured/.pre-commit-config.yaml -------------------------------------------------------------------------------- /rule-types/github/talisman_secrets_scanning.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/talisman_secrets_scanning.yaml -------------------------------------------------------------------------------- /rule-types/github/trivy_action_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/trivy_action_enabled.yaml -------------------------------------------------------------------------------- /rule-types/github/trufflehog_github_action.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/trufflehog_github_action.test.yaml -------------------------------------------------------------------------------- /rule-types/github/trufflehog_github_action.testdata/github_action_with_trufflehog/.github/workflows/trufflehog.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/trufflehog_github_action.testdata/github_action_with_trufflehog/.github/workflows/trufflehog.yaml -------------------------------------------------------------------------------- /rule-types/github/trufflehog_github_action.testdata/github_action_without_trufflehog/.github/workflows/not-trufflehog.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/trufflehog_github_action.testdata/github_action_without_trufflehog/.github/workflows/not-trufflehog.yaml -------------------------------------------------------------------------------- /rule-types/github/trufflehog_github_action.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/trufflehog_github_action.yaml -------------------------------------------------------------------------------- /rule-types/github/workflow_no_pull_request_target.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/workflow_no_pull_request_target.yaml -------------------------------------------------------------------------------- /rule-types/github/workflow_pull_request.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/github/workflow_pull_request.yaml -------------------------------------------------------------------------------- /rule-types/gitlab/gitlab_dependency_scanning_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/gitlab/gitlab_dependency_scanning_enabled.yaml -------------------------------------------------------------------------------- /rule-types/gitlab/gitlab_pipeline_secret_detection_enabled.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/gitlab/gitlab_pipeline_secret_detection_enabled.yaml -------------------------------------------------------------------------------- /rule-types/gitlab/gitlab_protect_branch.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/gitlab/gitlab_protect_branch.yaml -------------------------------------------------------------------------------- /rule-types/gitlab/gitlab_require_merge_requests.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rule-types/gitlab/gitlab_require_merge_requests.yaml -------------------------------------------------------------------------------- /rules_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/rules_test.go -------------------------------------------------------------------------------- /security-baseline/data-sources/ghapi.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/data-sources/ghapi.yaml -------------------------------------------------------------------------------- /security-baseline/data-sources/spdx.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/data-sources/spdx.yaml -------------------------------------------------------------------------------- /security-baseline/profiles/security-baseline-level-1.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/profiles/security-baseline-level-1.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-ac-02-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-ac-02-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-ac-02-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-ac-02-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-ac-03-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-ac-03-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-ac-03-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-ac-03-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-ac-03-02.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-ac-03-02.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-ac-03-02.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-ac-03-02.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.testdata/no_workflows/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.testdata/no_workflows/README.md -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.testdata/safe_workflows/.github/workflows/pr_test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.testdata/safe_workflows/.github/workflows/pr_test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.testdata/script_injection/.github/workflows/pr_title.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.testdata/script_injection/.github/workflows/pr_title.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.testdata/unsafe_checkout/.github/workflows/pr_test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.testdata/unsafe_checkout/.github/workflows/pr_test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.testdata/unsafe_checkout/.github/workflows/pr_workflow.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.testdata/unsafe_checkout/.github/workflows/pr_workflow.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-01-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-01-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-03-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-03-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-br-03-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-br-03-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-01-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-01-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-02-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-02-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-02-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-02-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-04-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-04-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-04-01.testdata/no_support/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-04-01.testdata/no_support/README.md -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-04-01.testdata/readme_with_support/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-04-01.testdata/readme_with_support/readme.md -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-04-01.testdata/support_eox_file/nested/SUPPORT.eox: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-04-01.testdata/support_eox_file/nested/SUPPORT.eox -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-04-01.testdata/support_md_file/SUPPORT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-04-01.testdata/support_md_file/SUPPORT.md -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-do-04-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-do-04-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-02-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-gv-02-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-03-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-gv-03-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-03-01.testdata/contributing_file/CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-gv-03-01.testdata/contributing_file/CONTRIBUTING.md -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-03-01.testdata/contributing_file_no_extension/CONTRIBUTING: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-gv-03-01.testdata/contributing_file_no_extension/CONTRIBUTING -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-03-01.testdata/contributing_folder/CONTRIBUTING/myfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-gv-03-01.testdata/contributing_folder/CONTRIBUTING/myfile -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-03-01.testdata/no_data/README.md: -------------------------------------------------------------------------------- 1 | I'm empty! -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-gv-03-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-gv-03-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-02-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-02-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-02-02.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-02-02.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.testdata/copying_file/COPYING: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-01.testdata/copying_file/COPYING -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.testdata/license_file/LICENSE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-01.testdata/license_file/LICENSE.md -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.testdata/license_file_no_extension/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-01.testdata/license_file_no_extension/LICENSE -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.testdata/license_folder/LICENSE/myfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-01.testdata/license_folder/LICENSE/myfile -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.testdata/no_data/foo: -------------------------------------------------------------------------------- 1 | I'm empty! -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-le-03-02.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-le-03-02.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-01-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-01-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-01-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-01-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-01-02.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-01-02.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.test.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/gemfile_no_lock/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/gemfile_no_lock/Gemfile -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/gemfile_with_lock/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/gemfile_with_lock/Gemfile -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/gemfile_with_lock/Gemfile.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/gemfile_with_lock/Gemfile.lock -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/go_mod_no_go_sum/go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/go_mod_no_go_sum/go.mod -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/go_mod_with_go_sum/go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/go_mod_with_go_sum/go.mod -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/go_mod_with_go_sum/go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/go_mod_with_go_sum/go.sum -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_no_lock/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_no_lock/package.json -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_package_lock/package-lock.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_package_lock/package-lock.json -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_package_lock/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_package_lock/package.json -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_yarn_lock/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_yarn_lock/package.json -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_yarn_lock/yarn.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.testdata/package_json_with_yarn_lock/yarn.lock -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-02-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-02-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-qa-05-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-qa-05-01.yaml -------------------------------------------------------------------------------- /security-baseline/rule-types/github/osps-vm-05-01.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mindersec/minder-rules-and-profiles/HEAD/security-baseline/rule-types/github/osps-vm-05-01.yaml --------------------------------------------------------------------------------