diff options
| author | Doug Bunting <6431421+dougbu@users.noreply.github.com> | 2022-04-07 04:10:04 +0300 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-04-07 04:10:04 +0300 |
| commit | 1d38f8759d86b87bba480962cb05029650dae747 (patch) | |
| tree | 6b132535199ac8534253b4fa3a0fe2717cb9c15e /.config | |
| parent | f08ae33675cee96677fad5654c0228cd3f3865ff (diff) | |
Revert "Move CredScanSuppressions.json to root of repo (#39780)" (#41070)
* Revert "Move CredScanSuppressions.json to root of repo (#39780)"
- root location does not work w/ `CredScan` check when pushing to AzDO mirror
This reverts commit cc3f45a3fb26b76b99c97570517fc82bc3285f01.
* Inform Guardian of CredScanSuppressions.json path
Diffstat (limited to '.config')
| -rw-r--r-- | .config/CredScanSuppressions.json | 165 |
1 files changed, 165 insertions, 0 deletions
diff --git a/.config/CredScanSuppressions.json b/.config/CredScanSuppressions.json new file mode 100644 index 0000000000..278b3b79c9 --- /dev/null +++ b/.config/CredScanSuppressions.json @@ -0,0 +1,165 @@ +{ + "tool": "Credential Scanner", + "suppressions": [ + { + "placeholder": "aspnetcore", + "_justification": "This is a fake password used in test code." + }, + { + "placeholder": "password", + "_justification": "This is a fake password used in test code." + }, + { + "placeholder": "my password", + "_justification": "This is a fake password used in test code." + }, + { + "placeholder": "newpassword", + "_justification": "This is a fake password used in test code." + }, + { + "placeholder": "testpassword", + "_justification": "This is a fake password used in test code." + }, + { + "placeholder": "AAABAgMEBQYHCAkKCwwNDg+ukCEMDf0yyQ29NYubggE=", + "_justification": "This is a fake password hash used in test code." + }, + { + "placeholder": "1qaz!QAZ", + "_justification": "This is a fake password used in test code." + }, + { + "placeholder": "1qaz@WSX", + "_justification": "This is a fake password used in test code." + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\testCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\DataProtection\\DataProtection\\test\\TestFiles\\TestCert1.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\DataProtection\\DataProtection\\test\\TestFiles\\TestCert2.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\DataProtection\\Extensions\\test\\TestFiles\\TestCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\DataProtection\\Extensions\\test\\TestFiles\\TestCert2.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\DataProtection\\Extensions\\test\\TestFiles\\TestCert3.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\DataProtection\\Extensions\\test\\TestFiles\\TestCert3WithoutPrivateKey.pfx", + "_justification": "Legitimate UT certificate file without private key" + }, + { + "file": "\\src\\DataProtection\\Extensions\\test\\TestFiles\\TestCertWithoutPrivateKey.pfx", + "_justification": "Legitimate UT certificate file without private key" + }, + { + "file": "\\src\\DefaultBuilder\\test\\Microsoft.AspNetCore.FunctionalTests\\testCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Identity\\ApiAuthorization.IdentityServer\\test\\current.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Identity\\ApiAuthorization.IdentityServer\\test\\expired.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Identity\\ApiAuthorization.IdentityServer\\test\\future.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Identity\\ApiAuthorization.IdentityServer\\test\\test.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Middleware\\WebSockets\\test\\ConformanceTests\\AutobahnTestApp\\TestResources\\testCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Security\\Authentication\\Negotiate\\test\\Negotiate.FunctionalTest\\negotiateAuthCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\IIS\\tools\\TestCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\aspnetdevcert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\eku.client.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\eku.code_signing.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\eku.multiple_usages.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\eku.server.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\no_extensions.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\SignalR\\clients\\ts\\FunctionalTests\\testCert.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\SignalR\\clients\\ts\\FunctionalTests\\testCertECC.pfx", + "_justification": "Legitimate UT certificate file with private key" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-aspnet.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-dsa-protected.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-dsa.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-ecdsa-protected.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-ecdsa.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-rsa-protected.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\Servers\\Kestrel\\shared\\test\\TestCertificates\\https-rsa.key", + "_justification": "Legitimate key file used for testing" + }, + { + "file": "\\src\\SignalR\\clients\\ts\\FunctionalTests\\node_modules\\https-proxy-agent\\node_modules\\agent-base\\test\\ssl-cert-snakeoil.key", + "_justification": "Legitimate key file used for testing" + } + ] +} |