Skip to content

Add .repo-metadata.json with Semgrep configuration#6

Open
pid1 wants to merge 1 commit into
mainfrom
add-semgrep-repo-metadata
Open

Add .repo-metadata.json with Semgrep configuration#6
pid1 wants to merge 1 commit into
mainfrom
add-semgrep-repo-metadata

Conversation

@pid1

@pid1 pid1 commented Apr 3, 2026

Copy link
Copy Markdown

Summary

  • Adds .repo-metadata.json to enable Semgrep tag sync via the cytracom-oss pipeline
  • Tags are auto-detected from the repo's primary language, with tier:standard as default

What this enables

Once merged, the daily tag sync workflow will:

  1. Discover this file and apply Semgrep project tags (repo-metadata:true + any custom tags from semgrep.tags)
  2. Enable this repo's inclusion in the automated SBOM pipeline

References

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant