Add allow-list config option to securitychecker_enlightn

phpro · Nov 19, 2022 · 2e38185 · 2e38185
1 parent 33449e8
commit 2e38185
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/src/Task/SecurityCheckerEnlightn.php b/src/Task/SecurityCheckerEnlightn.php
@@ -19,10 +19,12 @@ public static function getConfigurableOptions(): OptionsResolver
         $resolver->setDefaults([
             'lockfile' => './composer.lock',
             'run_always' => false,
+            'allow-list' => []
         ]);
 
         $resolver->addAllowedTypes('lockfile', ['string']);
         $resolver->addAllowedTypes('run_always', ['bool']);
+        $resolver->addAllowedTypes('allow-list', ['array']);
 
         return $resolver;
     }
@@ -45,6 +47,9 @@ public function run(ContextInterface $context): TaskResultInterface
         $arguments = $this->processBuilder->createArgumentsForCommand('security-checker');
         $arguments->add('security:check');
         $arguments->addOptionalArgument('%s', $config['lockfile']);
+        foreach ($config['allow-list'] as $cve) {
+            $arguments->addOptionalArgument('--allow-list=%s', $cve);
+        }
 
         $process = $this->processBuilder->buildProcess($arguments);
         $process->run();