Check out the Issue Explorer
Looking to fund some work? You can submit a new Funded Issue here.
It would be nice to have both a per-project and global configuration file to customize truffle-security behavior.
Personally, I prefer YAML over JSON, although javscript (which is what truffle uses) is fine too.
The kinds of things that this file could include:
* ignoring specific SWC's or SWC's to some degree of specificity (file, contract, location)
* ignoring below a specific severity level
* default eslint style
This configuration file may also be useful for CI.