Files Excluded from Onboarding and Scanning

Dam Secure dynamically excludes files that are typically not relevant for security scans. This prevents our scanning engine from scanning test fixtures, test logic, and packaged dependencies that normally result in noisy scan results.

Automatic File Excludes

Per-project automatic file exclusions generated during onboarding.

During onboarding, the Dam Secure engine will choose globs and paths of files to ignore. These are generated on a per-project basis.

Global File Excludes

There are certain patterns that are always applied to all repositories to filter out binary files, build artifacts, lock files, and other non-security-relevant content. Look within the project to see the full file list.

Repo-specific Excludes

You can add a .damsecure-ignore file in your repo which will be dynamically applied at scan time.

Automatic File Excludes​

Global File Excludes​

Repo-specific Excludes​

Automatic File Excludes

Global File Excludes

Repo-specific Excludes