# Functions
BaseDependencyExtract is a rego function that extracts dependencies from a file or subtree of the base filesystem in a pull_request or other diff context.
BaseFileArchive packages a set of files form the the specified directory in the base filesystem (from a pull_request or other diff context) into a tarball.
BaseFileExists is a rego function that checks if a file exists in the base filesystem from the ingester.
BaseFileHTTPType is a rego function that returns the HTTP type of a file in the filesystem being evaluated (which comes from the ingester).
BaseFileLs is a rego function that lists the files in a directory in the base filesystem being evaluated (in a pull_request or other diff context).
BaseFileLsGlob is a rego function that lists the files matching a glob in a directory in the base filesystem being evaluated (in a pull_request or other diff context).
BaseFileRead is a rego function that reads a file from the base filesystem in a pull_request or other diff context.
BaseFileWalk is a rego function that walks the files in a directory in the base filesystem being evaluated (in a pull_request or other diff context).
BaseListGithubActions is a rego function that lists the actions in a directory in the base filesystem being evaluated (in a pull_request or diff context).
DependencyExtract is a rego function that extracts dependencies from a file or subtree of the filesystem being evaluated (which comes from the ingester).
FileArchive packages a set of files form the the specified directory into a tarball.
FileExists is a rego function that checks if a file exists in the filesystem being evaluated (which comes from the ingester).
FileHTTPType is a rego function that returns the HTTP type of a file in the filesystem being evaluated (which comes from the ingester).
FileLs is a rego function that lists the files in a directory in the filesystem being evaluated (which comes from the ingester).
FileLsGlob is a rego function that lists the files matching a glob in a directory in the filesystem being evaluated (which comes from the ingester).
FileRead is a rego function that reads a file from the filesystem being evaluated (which comes from the ingester).
FileWalk is a rego function that walks the files in a directory in the filesystem being evaluated (which comes from the ingester).
JQIsTrue is a rego function that accepts parsed YAML data and runs a jq query on it.
LimitedDialer is an HTTP Dialer (Rego topdowmn.CustomizeRoundTripper) which allows us to limit the destination of dialed requests to block specific network ranges (such as RFC1918 space).
ListGithubActions is a rego function that lists the actions in a directory in the filesystem being evaluated (which comes from the ingester).
NewRegoEvaluator creates a new rego evaluator.
ParseToml is a rego function that parses a TOML configuration string into a structured data format.
ParseYaml is a rego function that parses a YAML string into a structured data format.
# Constants
ConstraintsEvaluationType is the constraints evaluation type It uses the rego query "data.minder.violations[results]" to determine if the object violates any constraints.
ConstraintsViolationsOutputJSON specifies that violations should be output as JSON.
ConstraintsViolationsOutputText specifies that the violations should be printed as human-readable text.
DenyByDefaultEvaluationType is the deny-by-default evaluation type It uses the rego query "data.minder.allow" to determine if the object is allowed.
EnablePrintEnvVar is the environment variable to enable print statements.
MinderRegoFile is the default rego file for minder.
RegoEvalType is the type of the rego evaluator.
RegoQueryPrefix is the prefix for rego queries.
# Variables
MinderRegoLib contains the minder-specific functions for rego.
MinderRegoLibExperiments contains Minder-specific functions which should only be exposed when the given experiment is enabled.
# Type aliases
ConstraintsViolationsFormat is the format to output violations in.
EvaluationType is the type of evaluation to perform.