mirror of
https://github.com/PR0M3TH3AN/SeedPass.git
synced 2025-09-07 14:58:56 +00:00
653 B
653 B
Secret Scanning
SeedPass uses Gitleaks to scan the repository for accidentally committed secrets. The scan runs automatically for pull requests and on a nightly schedule. Any findings will cause the build to fail.
Suppressing False Positives
If a file or string triggers the scanner but does not contain a real secret, add it to the allowlist in .gitleaks.toml.
[allowlist]
# Ignore specific files
paths = ["path/to/file.txt"]
# Ignore strings that match a regular expression
regexes = ["""dummy_api_key"""]
Commit the updated .gitleaks.toml to stop future alerts for the allowed items.