tyler.durden/centreon-plugins
1
0
Fork 0
mirror of https://github.com/centreon/centreon-plugins.git synced 2025-07-27 07:34:35 +02:00
Code Issues Packages Projects Releases Wiki Activity

feat(secu): add gitleaks configuration (#5543)

Browse Source
This commit is contained in:
Stéphane Chapron 2025-04-10 10:50:19 +02:00 committed by GitHub
parent 5822de6cc1
commit a5c317cc50
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 28 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
.github/workflows/gitleaks.yml vendored Normal file
View File

@ -0,0 +1,21 @@
name: gitleaks
on:
pull_request:
workflow_dispatch:
jobs:
scan:
name: gitleaks
runs-on: ubuntu-24.04
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
fetch-depth: 0
- uses: gitleaks/gitleaks-action@83373cf2f8c4db6e24b41c1a9b086bb9619e9cd3 # v2.3.7
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE}}
GITLEAKS_ENABLE_COMMENTS: false
GITLEAKS_ENABLE_UPLOAD_ARTIFACT: false
GITLEAKS_ENABLE_SUMMARY: false

8
.gitleaks.toml
View File

@ -5,9 +5,15 @@ useDefault = true
[allowlist] [allowlist]
paths = [ paths = [
'''node_modules\/''',
'''vendor\/''', '''vendor\/''',
'''(.*?)\.rptlibrary''', '''(.*?)\.rptlibrary''',
'''package\.json''',
'''package-lock\.json''',
'''pnpm-lock\.yaml''', '''pnpm-lock\.yaml''',
'''composer\.json''',
'''composer\.lock''',
'''yarn\.lock''',
'''\.gitleaks\.toml$''', '''\.gitleaks\.toml$''',
'''(.*?)(jpg|gif|doc|pdf|bin)$''' '''(.*?)(jpg|gif|doc|pdf|bin)$'''
] ]
@ -15,5 +21,5 @@ paths = [
regexTarget = "match" regexTarget = "match"
regexes = [ regexes = [
'''ABCDEFG1234567890''', '''ABCDEFG1234567890''',
'''s\.aBCD123DEF456GHI789JKL012''' '''s.aBCD123DEF456GHI789JKL012'''
] ]