Contents

require:
  - './lib/simplycop/security/csrf_token_validation.rb'
  - './lib/simplycop/security/reject_all_requests_local.rb'
  - './lib/simplycop/security/check_for_vulnerable_code.rb'

# Custom security cops

Security/CSRFTokenValidation:
  Enabled: true
  Details: >-
    It is important to have authenticity token validation enabled.
    if you need to disable it please check with InfoSec department first.

Security/RejectAllRequestsLocal:
  Enabled: true
  Details: >-
    Affected environments are integration, staging, production
    if you need to disable it please check with InfoSec department first.

Security/CheckForVulnerableCode:
  Enabled: true
  Details: >-
    Please make sure that this is addressed accordingly.
    Do not hesitate to contact infosec for help and guidance

# Standard security cops
    
# Overridden to false in Chopin
Security/CompoundHash:
  Enabled: true

Security/Eval:
  Enabled: true
  Exclude:
    - 'spec/**/*.rb'

# Overridden to false on Chopin
Security/IoMethods:
  Enabled: true

# Needs override in chopin spec
Security/JSONLoad:
  Enabled: true

Security/MarshalLoad:
  Enabled: true

Security/Open:
  Enabled: true

Security/YAMLLoad:
  Enabled: true

Version data entries

36 entries across 36 versions & 1 rubygems

Version	Path
simplycop-1.16.1	.simplycop_security.yml
simplycop-1.16.0	.simplycop_security.yml
simplycop-1.15.1	.simplycop_security.yml
simplycop-1.15.0	.simplycop_security.yml
simplycop-1.14.18	.simplycop_security.yml
simplycop-1.14.17	.simplycop_security.yml
simplycop-1.14.16	.simplycop_security.yml
simplycop-1.14.15	.simplycop_security.yml
simplycop-1.14.14	.simplycop_security.yml
simplycop-1.14.13	.simplycop_security.yml
simplycop-1.14.12	.simplycop_security.yml
simplycop-1.14.11	.simplycop_security.yml
simplycop-1.14.10	.simplycop_security.yml
simplycop-1.14.9	.simplycop_security.yml
simplycop-1.14.8	.simplycop_security.yml
simplycop-1.14.7	.simplycop_security.yml