Skip to main content

SecurityConfig

aptu_core::security::ignore

Struct SecurityConfig 

Source 
pub struct SecurityConfig {
    pub ignore_patterns: Vec<String>,
    pub ignore_paths: Vec<String>,
}
Expand description

Security configuration for ignore rules.

Loaded from ~/.config/aptu/security.toml with fallback to defaults.

By default, includes sensible ignore paths for common test and vendor directories. Use SecurityConfig::empty() for a configuration with no ignore rules.

Fields§

§ignore_patterns: Vec<String>

Pattern IDs to ignore (e.g., ["hardcoded-secret", "sql-injection"]).

§ignore_paths: Vec<String>

File path prefixes to ignore (e.g., ["test/", "vendor/"]).

Implementations§

Source§

impl SecurityConfig

Source

pub fn with_defaults() -> Self

👎Deprecated since 0.6.0:

Use SecurityConfig::default() instead

Create configuration with sensible default ignore paths.

This is an alias for Default::default().

Source

pub fn empty() -> Self

Create an empty configuration with no ignore rules.

Use this when you want to scan all files without any filtering.

Source

pub fn should_ignore_path(&self, file_path: &str) -> bool

Check if a file path should be ignored based on configuration.

This is a fast check that can be used before scanning to avoid running expensive regex patterns on files in ignored directories.

§Arguments
  • file_path - The file path to check
§Returns

true if the path should be ignored, false otherwise.

Source

pub fn load() -> Self

Load configuration from ~/.config/aptu/security.toml.

Returns default configuration if file doesn’t exist or parse fails.

§Returns

Loaded configuration or default on error.

Source

pub fn config_path() -> Option<PathBuf>

Get the configuration file path.

Returns ~/.config/aptu/security.toml or None if config directory cannot be determined.

Source

pub fn should_ignore(&self, finding: &Finding) -> bool

Check if a finding should be ignored based on configuration.

A finding is ignored if:

  • Its pattern ID matches any entry in ignore_patterns
  • Its file path starts with any entry in ignore_paths
§Arguments
  • finding - The finding to check
§Returns

true if the finding should be ignored, false otherwise.

Trait Implementations§

Source§

impl Clone for SecurityConfig

Source§

fn clone(&self) -> SecurityConfig

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for SecurityConfig

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for SecurityConfig

Source§

fn default() -> Self

Returns configuration with sensible default ignore paths.

Includes common test and vendor directories that typically contain test fixtures or third-party code that should not be scanned.

Source§

impl<'de> Deserialize<'de> for SecurityConfig

Source§

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl Serialize for SecurityConfig

Source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> DynClone for T
where T: Clone,

Source§

fn __clone_box(&self, _: Private) -> *mut ()

Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> FromResponse for T
where T: DeserializeOwned,

Source§

fn from_response<'async_trait, B>( response: Response<B>, ) -> Pin<Box<dyn Future<Output = Result<T, Error>> + Send + 'async_trait>>
where B: Body<Data = Bytes, Error = Error> + Send + 'async_trait, T: 'async_trait,

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,