db.go

1 year ago

Add support for evaluating OPA policies · 674ddc64

Jamie Tanna authored 1 year ago and

Jamie Tanna committed 1 year ago

As part of #258, we can introduce the `policy evaluate` command to give
an indication of the impact of a given Policy being introduced.

This requires we:

- list all the repos and packages (so we can perform per-repo tuning of
  policies if needed) from Renovate and SBOM datasources
- evaluate the policy, across many Goroutines due to the expected size
  of the returned list of dependencies

Although the scope of #273 was for this to be a `--dry-run` flag, it
makes more sense to be by default.

Closes #273.

674ddc64

History

Add support for evaluating OPA policies

Jamie Tanna authored 1 year ago and

Jamie Tanna committed 1 year ago

As part of #258, we can introduce the `policy evaluate` command to give
an indication of the impact of a given Policy being introduced.

This requires we:

- list all the repos and packages (so we can perform per-repo tuning of
  policies if needed) from Renovate and SBOM datasources
- evaluate the policy, across many Goroutines due to the expected size
  of the returned list of dependencies

Although the scope of #273 was for this to be a `--dry-run` flag, it
makes more sense to be by default.

Closes #273.

Code owners

Assign users and groups as approvers for specific file changes. Learn more.