Contents

require:
  - './lib/simplycop/security/csrf_token_validation.rb'
  - './lib/simplycop/security/reject_all_requests_local.rb'
  - './lib/simplycop/security/check_for_vulnerable_code.rb'

# Custom security cops

Security/CSRFTokenValidation:
  Enabled: true
  Details: >-
    It is important to have authenticity token validation enabled.
    if you need to disable it please check with InfoSec department first.

Security/RejectAllRequestsLocal:
  Enabled: true
  Details: >-
    Affected environments are integration, staging, production
    if you need to disable it please check with InfoSec department first.

Security/CheckForVulnerableCode:
  Enabled: true
  Details: >-
    Please make sure that this is addressed accordingly.
    Do not hesitate to contact infosec for help and guidance

# Standard security cops
    
Security/CompoundHash:
  Enabled: true

Security/Eval:
  Enabled: true
  Exclude:
    - 'spec/**/*.rb'

# Overridden to false on Chopin
Security/IoMethods:
  Enabled: true

# Needs override in chopin spec
Security/JSONLoad:
  Enabled: true

Security/MarshalLoad:
  Enabled: true

Security/Open:
  Enabled: true

Security/YAMLLoad:
  Enabled: true

Version data entries

18 entries across 18 versions & 1 rubygems

Version	Path
simplycop-2.13.2	.simplycop_security.yml
simplycop-2.13.1	.simplycop_security.yml
simplycop-2.13.0	.simplycop_security.yml
simplycop-2.12.1	.simplycop_security.yml
simplycop-2.12.0	.simplycop_security.yml
simplycop-2.11.1	.simplycop_security.yml
simplycop-2.11.0	.simplycop_security.yml
simplycop-2.10.0	.simplycop_security.yml
simplycop-2.9.1	.simplycop_security.yml
simplycop-2.9.0	.simplycop_security.yml
simplycop-2.8.0	.simplycop_security.yml
simplycop-2.7.2	.simplycop_security.yml
simplycop-2.7.1	.simplycop_security.yml
simplycop-2.7.0	.simplycop_security.yml
simplycop-2.6.0	.simplycop_security.yml
simplycop-2.5.1	.simplycop_security.yml
simplycop-2.5.0	.simplycop_security.yml
simplycop-2.3.3	.simplycop_security.yml