From 548feae12e8b3e0ee054fc5541f671b0b6063be2 Mon Sep 17 00:00:00 2001
From: ShiftLeft <no-reply@shiftleft.io>
Date: Wed, 15 May 2024 11:11:51 -0700
Subject: [PATCH] adding Qwiet preZero Static Analysis action workflow config

---
 shiftleft.yml | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 shiftleft.yml

diff --git a/shiftleft.yml b/shiftleft.yml
new file mode 100644
index 0000000..820144a
--- /dev/null
+++ b/shiftleft.yml
@@ -0,0 +1,15 @@
+version: 2
+build_rules:
+  - id: Allow no critical findings
+    severities:
+      - critical
+  - id: Allow one OSS or container finding
+    finding_types:
+      - oss_vuln
+      - container
+    threshold: 1
+  - id: Allow no reachable OSS vulnerability
+    finding_types:
+      - oss_vuln
+    options:
+      reachable: true