From a6576f3778b108a8f115fb4c0d0de462e7206182 Mon Sep 17 00:00:00 2001
From: ongamse <mgomes@qwiet.ai>
Date: Fri, 31 May 2024 16:54:35 -0400
Subject: [PATCH] Adds ShiftLeft CORE code analysis

---
 shiftleft.yml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 shiftleft.yml

diff --git a/shiftleft.yml b/shiftleft.yml
new file mode 100644
index 00000000..1d3f2fde
--- /dev/null
+++ b/shiftleft.yml
@@ -0,0 +1,22 @@
+version: 2 # implies that check-analysis v2 should be used and therefore
+           # the --v2 flag can be omitted when running sl check-analysis
+build_rules:
+- id: Allow no critical findings
+  finding_types:
+      - vuln
+  severities:
+    - critical
+  threshold: 0
+  options:
+   num_findings: 10 # Return 10 sast findings
+- id: Allow one OSS or container finding
+  finding_types:
+    - oss_vuln
+    - container
+  threshold: 1
+- id: Allow no reachable OSS vulnerability
+  finding_types:
+    - oss_vuln
+    - container
+  options:
+    reachable: true
\ No newline at end of file