From b102a1cfab40346081ac9d175c9eed9e5e9ef06e Mon Sep 17 00:00:00 2001
From: Eddie Knight <iv.eddieknight@gmail.com>
Date: Wed, 12 Oct 2022 02:29:44 -0500
Subject: [PATCH] chore(github): Added CLOMoitor exclusions related to
 dependency tracking (#1543)

---
 .clomonitor.yml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 .clomonitor.yml

diff --git a/.clomonitor.yml b/.clomonitor.yml
new file mode 100644
index 00000000..9f1fff8c
--- /dev/null
+++ b/.clomonitor.yml
@@ -0,0 +1,21 @@
+# CLOMonitor metadata file
+# This file must be located at the root of the repository
+
+# Checks exemptions
+exemptions:
+  - check: dependency_update_tool
+    reason: "Helm deps are not currently scanned. Maintainers are watching developments to dependabot-core #2237" # Justification of this exemption (mandatory, it will be displayed on the UI)
+  - check: sbom
+    reason: "Tracking Helm dependencies is not yet a stable practice."
+
+# TODO:
+# License scanning information
+# licenseScanning:
+  # URL with the repository's license scanning results
+  #
+  # CLOMonitor can extract license scanning results from FOSSA and Snyk badges
+  # in the repository README.md file automatically. If your repository uses a
+  # different scanning solution, this url can be set to pass the corresponding
+  # check.
+  # url: https://license-scanning-results.url
+