.gitleaks.toml · Secure CI/CD Pipeline

23 lines · toml

title = "secure-cicd-pipeline gitleaks config"
 
[extend]
useDefault = true
 
[[rules]]
id = "generic-api-key"
description = "Generic API key assignment"
regex = '''(?i)(api[_-]?key|secret|token)["'\s:=]{1,4}[a-z0-9]{24,}'''
keywords = ["api_key", "apikey", "secret", "token"]
 
[allowlist]
description = "Test fixtures and documented placeholders"
paths = [
  '''tests/.*''',
  '''README\.md''',
  '''docs/.*''',
]
regexes = [
  '''replace-with-.*''',
  '''changeme-.*''',
  '''EXAMPLE_[A-Z_]+''',
]

1	title = "secure-cicd-pipeline gitleaks config"
2
3	[extend]
4	useDefault = true
5
6	[[rules]]
7	id = "generic-api-key"
8	description = "Generic API key assignment"
9	regex = '''(?i)(api[_-]?key\|secret\|token)["'\s:=]{1,4}[a-z0-9]{24,}'''
10	keywords = ["api_key", "apikey", "secret", "token"]
11
12	[allowlist]
13	description = "Test fixtures and documented placeholders"
14	paths = [
15	'''tests/.*''',
16	'''README\.md''',
17	'''docs/.*''',
18	]
19	regexes = [
20	'''replace-with-.*''',
21	'''changeme-.*''',
22	'''EXAMPLE_[A-Z_]+''',
23	]