Skip to content

+

+ #1367

Workflow file for this run

name: Sensitive
on:
pull_request:
branches: ["*"]
push:
branches: ["*"]
jobs:
check-sensitive:
name: Key Material Check
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: detect
run: |
#!/bin/bash
headers=("AGE-SECRET-KEY" "BEGIN OPENSSH PRIVATE KEY" "BEGIN PGP PRIVATE KEY BLOCK" "PRIVATE")
for per in "${headers[@]}"
do
[ -z "$(grep -r "$per" --exclude="sensitive.yaml" ./)" ] || exit 1
done
shell: bash