Skip to content
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 18 additions & 0 deletions .codacy.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
---
# Codacy configuration — read by Codacy Cloud from the default branch (develop).
# Scopes security scanners to production code: hardcoded test credentials, non-literal
# fs/regexp in test helpers, and similar security findings in test code are intentional
# fixtures, not vulnerabilities. Other tools (ESLint, Stylelint, PMD) still analyze tests.
engines:
opengrep: # Semgrep — SAST security scanning
exclude_paths:
- "src/test/**"
- "src/test/**/*"
- "**/*.spec.ts"
bandit: # Python security scanning
exclude_paths:
- "src/test/**"
- "src/test/**/*"
- "**/test_*.py"
- "**/*_test.py"
- "**/tests/**"
Loading