Skip to content

Commit e70db4d

Browse files
wayne-grantwayne-grant
committed
feat: add secrets scanning
1 parent bfc92f3 commit e70db4d

File tree

3 files changed

+18
-1
lines changed

3 files changed

+18
-1
lines changed

.circleci/config.yml

Lines changed: 10 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,8 @@
11
version: 2.1
22

3+
orbs:
4+
prodsec: snyk/[email protected]
5+
36
defaults: &defaults
47
parameters:
58
node_version:
@@ -87,6 +90,12 @@ workflows:
8790
version: 2
8891
test_and_release:
8992
jobs:
93+
- prodsec/secrets-scan:
94+
name: Scan repository for secrets
95+
context:
96+
- snyk-bot-slack
97+
channel: os-team-managed-alerts
98+
9099
- lint:
91100
name: lint
92101
context: nodejs-install
@@ -112,4 +121,4 @@ workflows:
112121
filters:
113122
branches:
114123
only:
115-
- master
124+
- master

.gitleaksignore

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,3 @@
1+
c9fdda06e37173e730b2a6c5554d220e4ab74de2:test/fixtures/eigen/Podfile.lock:generic-api-key:525
2+
c9fdda06e37173e730b2a6c5554d220e4ab74de2:test/fixtures/eigen/Podfile.lock:generic-api-key:559
3+
c9fdda06e37173e730b2a6c5554d220e4ab74de2:test/fixtures/eigen/Podfile.lock:generic-api-key:593

.pre-commit-config.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,5 @@
1+
repos:
2+
- repo: https://github.com/gitleaks/gitleaks
3+
rev: v8.16.1
4+
hooks:
5+
- id: gitleaks

0 commit comments

Comments
 (0)