Jose
dbd70e61ce
Some checks failed
ansible-lint / Ansible Lint (push) Successful in 12s
Gitleaks Scan / gitleaks (push) Successful in 4s
Markdown Lint / markdown-lint (push) Successful in 5s
ai-reviews / Review PR (pull_request) Successful in 30s
PR check / Gitleaks (pull_request) Failing after 4s
PR check / lint tests (pull_request) Successful in 15s
PR check / handle_failures (pull_request) Successful in 2s
PR check / handle_success (pull_request) Has been skipped
Updated the README to comment out the allowlist rule for badge URLs, as it is no longer necessary.
31 lines
778 B
TOML
31 lines
778 B
TOML
title = "Gitleaks Config"
|
|
|
|
# ==========================
|
|
# Allowlist / False Positive Rules
|
|
# ==========================
|
|
# [[allowlist]]
|
|
# description = "Ignore placeholder secrets in README.md"
|
|
# filepath = "README.md"
|
|
# # Add all placeholder-like patterns that trigger false positives
|
|
# regex = "cafebabe|deadbeef|DB_PASSWORD"
|
|
|
|
# [[allowlist]]
|
|
# description = "Ignore badge URLs in README"
|
|
# filepath = "README.md"
|
|
# regex = "https://img.shields.io"
|
|
|
|
# ==========================
|
|
# Rules
|
|
# ==========================
|
|
[[rules]]
|
|
id = "generic-api-key"
|
|
description = "Generic API Key"
|
|
regex = "(?i)(api[_-]?key|secret|token)=\\S+"
|
|
entropy = 3.5
|
|
|
|
[[rules]]
|
|
id = "sidekiq-secret"
|
|
description = "Sidekiq Secret"
|
|
regex = "export BUNDLE_ENTERPRISE__CONTRIBSYS__COM=\\S+"
|
|
entropy = 2.5
|