Created
November 1, 2025 15:48
-
-
Save williamzujkowski/da899905c2905fafe74db871be75fcbe to your computer and use it in GitHub Desktop.
OSV-Scanner configuration with ignore rules and parallel scanning
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # OSV-Scanner Configuration | |
| # Source: https://williamzujkowski.github.io/posts/2025-10-06-automated-security-scanning-pipeline/ | |
| # Purpose: Configure OSV-Scanner for dependency scanning with ignore rules | |
| # Usage: Save as osv-scanner.toml in project root | |
| [ignore] | |
| # Ignore specific vulnerabilities | |
| vulnerabilities = [ | |
| "GHSA-xxxx-yyyy-zzzz" | |
| ] | |
| # Ignore packages in devDependencies | |
| dev_dependencies = true | |
| # Custom package registries | |
| [[package_repositories]] | |
| name = "private-npm" | |
| url = "https://npm.internal.company.com" | |
| [scanning] | |
| # Skip git directories | |
| skip_git = true | |
| # Parallel scanning | |
| max_depth = 10 | |
| workers = 4 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment