| | @@ -0,0 +1,23 @@ |
| + | title = "secure-cicd-pipeline gitleaks config" |
| + | |
| + | [extend] |
| + | useDefault = true |
| + | |
| + | [[rules]] |
| + | id = "generic-api-key" |
| + | description = "Generic API key assignment" |
| + | regex = '''(?i)(api[_-]?key|secret|token)["'\s:=]{1,4}[a-z0-9]{24,}''' |
| + | keywords = ["api_key", "apikey", "secret", "token"] |
| + | |
| + | [allowlist] |
| + | description = "Test fixtures and documented placeholders" |
| + | paths = [ |
| + | '''tests/.*''', |
| + | '''README\.md''', |
| + | '''docs/.*''', |
| + | ] |
| + | regexes = [ |
| + | '''replace-with-.*''', |
| + | '''changeme-.*''', |
| + | '''EXAMPLE_[A-Z_]+''', |
| + | ] |