This is an automated email from the ASF dual-hosted git repository. juzhiyuan pushed a commit to branch juzhiyuan-patch-3 in repository https://gitbox.apache.org/repos/asf/apisix-dashboard.git
commit 9b5c801927c4d8d8ce647d53b1d04ca5f432e962 Author: ηθ΄θΏ <[email protected]> AuthorDate: Fri Dec 11 17:23:24 2020 +0800 ci: support gitleaks to scan hardcoded password --- .github/workflows/gitleaks.yml | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml new file mode 100644 index 0000000..cd59fb6 --- /dev/null +++ b/.github/workflows/gitleaks.yml @@ -0,0 +1,25 @@ +# Scan git repos (or files) for secrets using regex and entropy π + +name: gitLeaks + +on: + push: + branches: + - master + pull_request: + branches: + - master + +jobs: + gitleaks: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v2 + with: + fetch-depth: '1' + - name: wget + uses: wei/wget@v1 + with: + args: -O .gitleaks.toml https://raw.githubusercontent.com/ycjcl868/gitleaks/master/.gitleaks.toml + - name: gitleaks-action + uses: zricethezav/gitleaks-action@master
