-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path.safety-policy.yml
29 lines (26 loc) · 1.05 KB
/
.safety-policy.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
# Safety Security and License Configuration file
security:
# A severity number between 0 and 10.
# Some helpful reference points:
# 9=ignore all vulnerabilities except CRITICAL severity.
# 7=ignore all vulnerabilities except CRITICAL
ignore-cvss-severity-below: 0
# True or False. We recommend you set this to False.
ignore-cvss-unknown-severity: False
# Here you can list multiple specific vulnerabilities
# you want to ignore (optionally for a time period)
#
# We recommend making use of the optional `reason` and
# `expires` keys for each vulnerability that you ignore.
ignore-vulnerabilities:
# Example:
# Langchain prompt injection
# https://github.com/langchain-ai/langchain/issues/7700
#
60433:
reason: We do not use the vulnerable REPL tool
expires: "2024-03-01" # date this ignore will expire
# Suppress non-zero exit codes when vulnerabilities are found.
# Enable this in pipelines and CI/CD processes if you want to
# pass builds that have vulnerabilities
continue-on-vulnerability-error: False