From bb139a08856087920ac9c44cc46f2b2f9ef10d62 Mon Sep 17 00:00:00 2001
From: Cody Maffucci <46459665+Maffooch@users.noreply.github.com>
Date: Wed, 8 Nov 2023 10:47:17 -0600
Subject: [PATCH] Add dryrunsec file

---
 .dryrunsecurity.yaml | 67 ++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 67 insertions(+)
 create mode 100644 .dryrunsecurity.yaml

diff --git a/.dryrunsecurity.yaml b/.dryrunsecurity.yaml
new file mode 100644
index 0000000000..a5ccf1ea87
--- /dev/null
+++ b/.dryrunsecurity.yaml
@@ -0,0 +1,67 @@
+---
+sensitiveCodepaths:
+  - 'dojo/object/*.py' # FIXME
+  - 'dojo/announcement/*.py'
+  - 'dojo/api_v2/*.py'
+  - 'dojo/api_v2/**/*.py'
+  - 'dojo/authorization/*.py'
+  - 'dojo/db_migrations/*.py'
+  - 'dojo/endpoint/*.py'
+  - 'dojo/engagement/*.py'
+  - 'dojo/finding/*.py'
+  - 'dojo/finding_group/*.py'
+  - 'dojo/group/*.py'
+  - 'dojo/importers/*.py'
+  - 'dojo/importers/**/*.py'
+  - 'dojo/jira_link/*.py'
+  - 'dojo/metrics/*.py'
+  - 'dojo/note_type/*.py'
+  - 'dojo/notes/*.py'
+  - 'dojo/product/*.py'
+  - 'dojo/product_type/*.py'
+  - 'dojo/reports/*.py'
+  - 'dojo/risk_acceptance/*.py'
+  - 'dojo/search/*.py'
+  - 'dojo/templates/*.html'
+  - 'dojo/templates/**/*.html'
+  - 'dojo/templatetags/*.py'
+  - 'dojo/test/*.py'
+  - 'dojo/tool_config/*.py'
+  - 'dojo/tool_product/*.py'
+  - 'dojo/tool_type/*.py'
+  - 'dojo/user/*.py'
+  - 'dojo/apps.py'
+  - 'dojo/celery.py'
+  - 'dojo/context_processors.py'
+  - 'dojo/decorators.py'
+  - 'dojo/filters.py'
+  - 'dojo/forms.py'
+  - 'dojo/middleware.py'
+  - 'dojo/models.py'
+  - 'dojo/okta.py'
+  - 'dojo/pipeline.py'
+  - 'dojo/remote_user.py'
+  - 'dojo/tasks.py'
+  - 'dojo/urls.py'
+  - 'dojo/utils.py'
+  - 'dojo/views.py'
+  - 'dojo/wsgi.py'
+  - 'docker/environments/*.env'
+  - 'docker/extra_settings'
+  - 'docker/entrypoint-celery-beat.sh'
+  - 'docker/entrypoint-celery-worker.sh'
+  - 'docker/entrypoint-initializer.sh'
+  - 'docker/entrypoint-nginx.sh'
+  - 'docker/entrypoint-uwsgi.sh'
+  - 'docker/wait-for-it.sh'
+allowedAuthors:
+  usernames:
+    - mtesauro
+    - devGregA
+    - grendel513
+    - cneill
+    - Maffooch
+    - blakeowens
+notificationList:
+  - '@mtesauro'
+  - '@grendel513'
\ No newline at end of file