Skip to content
CI

πŸ” ci(security): add gitleaks secret scanning #10

Sign in to view logs

πŸ” ci(security): add gitleaks secret scanning

πŸ” ci(security): add gitleaks secret scanning #10

Workflow file for this run

.github/workflows/ci.yml at f45b8d9
name: CI
on:
pull_request:
push:
branches:
- main
- master
env:
BOT_TOKEN: "123456:TEST_TOKEN"
TEST_BOT_TOKEN: "123456:TEST_TOKEN"
BASE_FEE: "100"
DB_URL: "sqlite+aiosqlite:///tmp/mmwb-test.db"
REDIS_URL: "redis://localhost:6379/0"
TRON_API_KEY: "test"
TRON_MASTER_ADDRESS: "test"
TRON_MASTER_KEY: "test"
THOTHPAY_API: "test"
OPENAI_KEY: "test"
EURMTL_KEY: "test"
SENTRY_DSN: "https://examplePublicKey@o0.ingest.sentry.io/0"
HORIZON_URL: "https://horizon-testnet.stellar.org"
HORIZON_URL_RW: "https://horizon-testnet.stellar.org"
MONGODB_URL: "mongodb://localhost:27017/mmwb_test"
GRIST_TOKEN: "test"
TONCONSOLE_TOKEN: "test"
TON_TOKEN: "test"
WALLET_COST: "1"
jobs:
secrets-scan:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Run gitleaks
uses: docker://zricethezav/gitleaks:v8.24.2
with:
args: detect --source=. --no-git --redact --config=.gitleaks.toml
check:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Setup Python
uses: actions/setup-python@v5
with:
python-version: "3.12"
- name: Setup uv
uses: astral-sh/setup-uv@v6
- name: Setup just
uses: taiki-e/install-action@just
- name: Install system dependencies
run: sudo apt-get update && sudo apt-get install -y libzbar0
- name: Run CI gate
run: just check-fast
e2e-smoke:
runs-on: ubuntu-latest
needs: check
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Setup Python
uses: actions/setup-python@v5
with:
python-version: "3.12"
- name: Setup uv
uses: astral-sh/setup-uv@v6
- name: Setup just
uses: taiki-e/install-action@just
- name: Install system dependencies
run: sudo apt-get update && sudo apt-get install -y libzbar0
- name: Run E2E smoke gate
run: just test-e2e-smoke