Allow to exclude packages from the minimum package age

2026-05-26 12:10:49 +00:00 · 2026-01-14 17:41:23 +01:00 · 2026-01-14 17:41:23 +01:00 · d7a9884ff6
commit d7a9884ff6
parent 4ef4218eb5
9 changed files with 387 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -212,6 +212,22 @@ You can set the minimum package age through multiple sources (in order of priori
   }
   ```

+### Excluding Packages
+
+Exclude trusted packages from minimum age filtering via environment variable or config file (both are merged):
+
+```shell
+export SAFE_CHAIN_NPM_MINIMUM_PACKAGE_AGE_EXCLUSIONS="react,@aikidosec/safe-chain"
+```
+
+```json
+{
+  "npm": {
+    "minimumPackageAgeExclusions": ["react", "@aikidosec/safe-chain"]
+  }
+}
+```
+
 ## Custom Registries

 Configure Safe Chain to scan packages from custom or private registries.