Skip to content

Merge pull request #452 from BrainPad/450 #631

Merge pull request #452 from BrainPad/450

Merge pull request #452 from BrainPad/450 #631

Workflow file for this run

name: cliboa-security
on: [push]
jobs:
git_secrets:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: install git-secrets
run: |
sudo ln -s "$(which echo)" /usr/local/bin/say
git clone https://github.com/awslabs/git-secrets.git git-secrets
cd git-secrets
sudo make install
- name: setup git-secrets
run: |
cd git-secrets
git secrets --install
# add aws secrets
git secrets --register-aws
# add other secrets
git secrets --add "password\s*=\s*\".+\""
git secrets --add --allowed "password\s*=\"dummy.*\""
- name: check secrets
run: |
cd git-secrets
# list rules
git secrets --list
# check
git secrets --scan -r .