Merge pull request #2882 from thc202/update-data

kingthorin · web-flow · commit 834dab6982d5 · 2024-11-27T07:32:52.000-05:00
Update data
diff --git a/site/content/docs/desktop/addons/scan-policies/_index.md b/site/content/docs/desktop/addons/scan-policies/_index.md
@@ -0,0 +1,24 @@
+---
+# This page was generated from the add-on.
+title: Scan Policies
+type: userguide
+weight: 1
+cascade:
+  addon:
+    id: scanpolicies
+    version: 0.1.0
+---
+
+# Scan Policies
+
+This add-on provides a set of Scan Policies tuned for different purposes.
+
+These policies are initialised as detailed in the relevant pages, but you can tune them as required.
+
+* [Default Policy](/docs/desktop/addons/scan-policies/policy-default/) : the default policy, all installed active rules enabled
+* [Developer CICD Policy](/docs/desktop/addons/scan-policies/policy-dev-cicd/) : a policy intended for CI/CD use, focused on quick but higher risk issues
+* [Developer Standard Policy](/docs/desktop/addons/scan-policies/policy-dev-std/) : a policy directed at developers, meant to perform fairly quickly while providing a greater set of results than the CICD policy (intended for use in a dev environment)
+* [Developer Full Policy](/docs/desktop/addons/scan-policies/policy-dev-full/) : a developer focused policy, including a superset of the dev standard with a greater variety of potential findings and only minimal environmental/server related rules (intended for use in a dev environment)
+* [QA Standard Policy](/docs/desktop/addons/scan-policies/policy-qa-std/) : a quality assurance focused policy meant to perform fairly quickly while providing a greater set of results than developer policies, intended for use in a QA/staging environment
+* [QA Full Policy](/docs/desktop/addons/scan-policies/policy-qa-full/) : a more comprehensive quality assurance focused policy, including a superset of the QA standard with a greater variety of potential findings with more environmental/server related rules, intended for use in a QA/Staging environment
+* [API Policy](/docs/desktop/addons/scan-policies/policy-api/) : a policy focusing on issues likely to impact APIs and not UI.
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-api.md b/site/content/docs/desktop/addons/scan-policies/policy-api.md
@@ -0,0 +1,14 @@
+---
+# This page was generated from the add-on.
+title: API Policy
+type: userguide
+weight: 1
+---
+
+# API Policy
+
+A policy focusing on issues likely to impact APIs and not UI.
+
+For the list of scan rules included see the [Alert Tag: POLICY_API](/alerttags/policy_api/) page.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-default.md b/site/content/docs/desktop/addons/scan-policies/policy-default.md
@@ -0,0 +1,12 @@
+---
+# This page was generated from the add-on.
+title: Default Policy
+type: userguide
+weight: 2
+---
+
+# Default Policy
+
+A policy which enables all of the installed active scan rules.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-dev-cicd.md b/site/content/docs/desktop/addons/scan-policies/policy-dev-cicd.md
@@ -0,0 +1,22 @@
+---
+# This page was generated from the add-on.
+title: Developer CI/CD Policy
+type: userguide
+weight: 3
+---
+
+# Developer CI/CD Policy
+
+This policy is designed to be used by developers in a CI/CD pipeline.
+
+* Recommended for running in CI/CD
+* No environmental / server related rules
+* No long running rules
+* No rules with high false positives
+* No timing attacks
+* No informational only rules
+* Minimal overlap
+
+For the list of scan rules included see the [Alert Tag: POLICY_DEV_CICD](/alerttags/policy_dev_cicd/) page.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-dev-full.md b/site/content/docs/desktop/addons/scan-policies/policy-dev-full.md
@@ -0,0 +1,20 @@
+---
+# This page was generated from the add-on.
+title: Developer Full Policy
+type: userguide
+weight: 5
+---
+
+# Developer Full Policy
+
+A developer focused policy, including a superset of the [dev standard](/docs/desktop/addons/scan-policies/policy-dev-std/) with a greater variety of potential findings and only minimal environmental/server related rules, intended for use in a dev environment.
+
+* A superset of Developer Standard
+* Intended to run in a dev environment
+* No rules with high false positives
+* No timing attacks
+* Minimal environmental / server related rules
+
+For the list of scan rules included see the [Alert Tag: POLICY_DEV_FULL](/alerttags/policy_dev_full/) page.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-dev-std.md b/site/content/docs/desktop/addons/scan-policies/policy-dev-std.md
@@ -0,0 +1,22 @@
+---
+# This page was generated from the add-on.
+title: Developer Standard Policy
+type: userguide
+weight: 4
+---
+
+# Developer Standard Policy
+
+A developer focused policy meant to perform fairly quickly while providing a greater set of results than the CICD policy, intended for use in a dev environment.
+
+* A superset of Developer CICD
+* Intended to run in a dev environment
+* No environmental / server related rules
+* No rules with high false positives
+* No timing attacks
+* No informational only rules
+* Can include longer running rules
+
+For the list of scan rules included see the [Alert Tag: POLICY_DEV_STD](/alerttags/policy_dev_std/) page.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-qa-full.md b/site/content/docs/desktop/addons/scan-policies/policy-qa-full.md
@@ -0,0 +1,17 @@
+---
+# This page was generated from the add-on.
+title: QA Full Policy
+type: userguide
+weight: 7
+---
+
+# QA Full Policy
+
+A quality assurance focused policy, including a superset of the [QA standard](/docs/desktop/addons/scan-policies/policy-qa-std/) with a greater variety of potential findings with more environmental/server related rules, intended for use in a QA/Staging environment.
+
+* Intended to run in a QA / Staging environment which is close to production
+* A superset of Developer Full (and QA Standard) but with more env / server rules enabled
+
+For the list of scan rules included see the [Alert Tag: POLICY_QA_FULL](/alerttags/policy_qa_full/) page.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
diff --git a/site/content/docs/desktop/addons/scan-policies/policy-qa-std.md b/site/content/docs/desktop/addons/scan-policies/policy-qa-std.md
@@ -0,0 +1,18 @@
+---
+# This page was generated from the add-on.
+title: QA Standard Policy
+type: userguide
+weight: 6
+---
+
+# QA Standard Policy
+
+A quality assurance focused policy meant to perform fairly quickly while providing a greater set of results than developer policies, intended for use in a QA/staging environment.
+
+* Intended to run in a QA / Staging environment which is close to production
+* A superset of Developer Standard but with important env / server rules enabled
+* Not env issues that should have been fixed by everyone
+
+For the list of scan rules included see the [Alert Tag: POLICY_QA_STD](/alerttags/policy_qa_std/) page.
+
+Return to [main scan policies page](/docs/desktop/addons/scan-policies/).
