feat: add ability to exclude some operations from security-defined rule (#1570)

2025-12-06 04:21:09 +00:00 · 2024-05-29 09:13:24 +03:00
parent a53bb35f00
commit f6cce633d0
4 changed files with 151 additions and 11 deletions
--- a/docs/rules/security-defined.md
+++ b/docs/rules/security-defined.md
@@ -34,9 +34,17 @@ security: []

 ## Configuration

-| Option   | Type   | Description                                                                                |
-| -------- | ------ | ------------------------------------------------------------------------------------------ |
-| severity | string | Possible values: `off`, `warn`, `error`. Default `error` (in `recommended` configuration). |
+| Option     | Type                                    | Description                                                                                |
+| ---------- | --------------------------------------- | ------------------------------------------------------------------------------------------ |
+| severity   | string                                  | Possible values: `off`, `warn`, `error`. Default `error` (in `recommended` configuration). |
+| exceptions | [[Exception object](#exception-object)] | List of exceptions from the rule.                                                          |
+
+### Exception object
+
+| Option  | Type     | Description                                                                                 |
+| ------- | -------- | ------------------------------------------------------------------------------------------- |
+| path    | string   | **REQUIRED.** Excluded path.                                                                |
+| methods | [string] | Optional list of operations to exclude. If not provided, the entire path is being excluded. |

 An example configuration: