SentinelAI/.pre-commit-hooks.yaml at main · threatvec/SentinelAI · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# ============================================================================
# SentinelAI - Pre-commit hook for external use
# Made by threatvec & talkdedsec
# https://github.com/threatvec/SentinelAI
#
# Usage in .pre-commit-config.yaml:
#   - repo: https://github.com/threatvec/SentinelAI
#     rev: v1.0.0
#     hooks:
#       - id: sentinelai-secrets
#       - id: sentinelai-code
#       - id: sentinelai-full
# ============================================================================

- id: sentinelai-secrets
  name: SentinelAI Secret Scanner
  description: Scan for hardcoded secrets, API keys, and credentials
  entry: sentinelai scan
  language: python
  types: [python]
  pass_filenames: false
  args: [".", "--rules", "secrets", "--severity", "medium"]

- id: sentinelai-code
  name: SentinelAI Code Scanner
  description: Scan for code vulnerabilities (SQL injection, XSS, etc.)
  entry: sentinelai scan
  language: python
  types: [python]
  pass_filenames: false
  args: [".", "--rules", "code", "--severity", "high"]

- id: sentinelai-full
  name: SentinelAI Full Scan
  description: Complete security scan (secrets, code, OWASP)
  entry: sentinelai scan
  language: python
  types: [python]
  pass_filenames: false
  args: [".", "--rules", "secrets,code,owasp", "--severity", "medium"]