From 7bba48457d4ba1bd12d3117f7535cc5c508e67b5 Mon Sep 17 00:00:00 2001 From: Jonsy13 Date: Fri, 17 May 2024 17:34:27 +0530 Subject: [PATCH 1/2] Added gitleaks Signed-off-by: Jonsy13 --- .github/workflows/build.yml | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 1e7d200f..af798942 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -20,6 +20,17 @@ jobs: - name: checking syntax of shell script run: bash -c 'shopt -s globstar nullglob; shellcheck **/*.{sh,ksh,bash}' || true + gitleaks-scan: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v3 + with: + fetch-depth: 0 + - name: Run GitLeaks + run: | + wget https://github.com/gitleaks/gitleaks/releases/download/v8.18.2/gitleaks_8.18.2_linux_x64.tar.gz && \ + tar -zxvf gitleaks_8.18.2_linux_x64.tar.gz && \ + sudo mv gitleaks /usr/local/bin && gitleaks detect --source . -v changes: runs-on: ubuntu-latest From 045dd540c24fe783abca5833c49d872a65a9d448 Mon Sep 17 00:00:00 2001 From: Jonsy13 Date: Fri, 17 May 2024 17:46:59 +0530 Subject: [PATCH 2/2] Added gitleaks Signed-off-by: Jonsy13 --- .gitleaksignore | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 .gitleaksignore diff --git a/.gitleaksignore b/.gitleaksignore new file mode 100644 index 00000000..6cdb71ac --- /dev/null +++ b/.gitleaksignore @@ -0,0 +1,20 @@ +a86a56788abdb38215b754e0adbc0266b59b0c66:custom/workflow-helper/postgres-helper/application/secret.yaml:generic-api-key:14 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:hashicorp-tf-password:37 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:185 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:261 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:356 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:510 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:634 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:717 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/resilient-bank-of-anthos.yaml:generic-api-key:719 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:hashicorp-tf-password:37 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:184 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:260 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:355 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:508 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:632 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:715 +debc54a699d9d858ec688c03afbec25b44e55f68:custom/workflow-helper/app-deployer/app-manifest/weak-bank-of-anthos.yaml:generic-api-key:717 +18c021c800ef58808b1d761bff4aa345ebc07f78:custom/git-app-deployer/git-app-checker/main.py:hashicorp-tf-password:40 +8d0421b73750e632c69bded02a2242cc94f210de:mysql-master/Dockerfile:generic-api-key:37 +8d0421b73750e632c69bded02a2242cc94f210de:mysql-slave/Dockerfile:generic-api-key:37 \ No newline at end of file