Skip to content

Updated Security Lake notes #388

Updated Security Lake notes

Updated Security Lake notes #388

Workflow file for this run

name: Secrets Scan
on: [push, workflow_dispatch]
jobs:
Gitleaks:
name: Gitleaks Secrets Scan
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Gitleaks Action
uses: gitleaks/gitleaks-action@v2
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE }} # Only required for Organizations, not personal accounts
TruffleHog:
name: TruffleHog Secrets Scan
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: TruffleHog OSS
uses: trufflesecurity/trufflehog@main
with:
path: ./
# base: ${{ github.event.repository.default_branch }}
# head: HEAD
extra_args: --debug --only-verified