fix(ci): allowlist README.md in gitleaks config
backend-ci / sast (push) Successful in 6s
backend-ci / fs-scan (push) Failing after 4s
backend-ci / lint (push) Successful in 23s
backend-ci / typecheck (push) Successful in 20s
backend-ci / test (push) Successful in 21s
backend-ci / secrets-scan (push) Successful in 4s
backend-ci / image-scan (push) Has been cancelled
backend-ci / push (push) Has been cancelled
backend-ci / build (push) Has been cancelled
backend-ci / sast (push) Successful in 6s
backend-ci / fs-scan (push) Failing after 4s
backend-ci / lint (push) Successful in 23s
backend-ci / typecheck (push) Successful in 20s
backend-ci / test (push) Successful in 21s
backend-ci / secrets-scan (push) Successful in 4s
backend-ci / image-scan (push) Has been cancelled
backend-ci / push (push) Has been cancelled
backend-ci / build (push) Has been cancelled
The NestJS starter README includes a placeholder CircleCI badge token (?token=abc123def456) on a reference-style image link. README files commonly contain placeholder secrets and badge URLs, so allowlist README.md by path. Same pattern as the existing .env.example allowlist. Verified locally: gitleaks scan now reports no leaks.
This commit is contained in:
+3
-1
@@ -1,9 +1,11 @@
|
||||
# Gitleaks config for the movieloop backend repo.
|
||||
# Inherits the default rule set; allows .env.example by path.
|
||||
# Inherits the default rule set; allows .env.example and README.md
|
||||
# by path (READMEs commonly include placeholder/badge URL tokens).
|
||||
[extend]
|
||||
useDefault = true
|
||||
|
||||
[allowlist]
|
||||
paths = [
|
||||
'''(^|/)\.env\.example$''',
|
||||
'''(^|/)README\.md$''',
|
||||
]
|
||||
|
||||
Reference in New Issue
Block a user