Bump to veracode 1.0.17 and remove exclusions. Scan should fail

2025-09-17 14:21:39 +00:00 · 2025-01-09 21:09:02 +00:00
parent da9c7c372c
commit 275e4bfd06
4 changed files with 6 additions and 37 deletions
--- a/scripts/ci/SAST-exclusion-list.txt
+++ b/scripts/ci/SAST-exclusion-list.txt
@@ -1 +0,0 @@
-spring-security*
--- a/scripts/ci/remove-sast-exclusions.sh
+++ b/scripts/ci/remove-sast-exclusions.sh
@@ -1,24 +0,0 @@
-#!/usr/bin/env bash
-echo "=========================== Excluding Files from Veracode SAST ==========================="
-set -ex
-pushd "$(dirname "${BASH_SOURCE[0]}")/../../"
-
-# Copy war file to temporary directory
-cp -f "$1" "$2"
-
-# Remove files to be excluded from Veracode SAST
-exclusions="./scripts/ci/SAST-exclusion-list.txt"
-if [ -e $exclusions ]
-then
-    while read -r line
-    do
-      echo "Removing WEB-INF/lib/$line"
-      zip -d "$2" "WEB-INF/lib/$line" || true
-    done < "$exclusions"
-else
-    echo "No files to be excluded from SAST"
-fi
-
-popd
-set +ex
-echo "=========================== Finishing Excluding Files from Veracode SAST =========================="