GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → zricethezav → gitleaks-ci

zricethezav / gitleaks-ci

Licence: other
gitleaks, but for PRs

Programming Languages

shell
77523 projects

Labels

securitycontinuous-integration

Projects that are alternatives of or similar to gitleaks-ci

drone-cleanup
Clean up completed drone.io jobs and pods from the Kubernetes cluster
Stars: ✭ 25 (-54.55%)
Mutual labels:  continuous-integration
node example
ROS node examples with parameter server, dynamic reconfigure, timers, and custom messages for C++ and Python.
Stars: ✭ 90 (+63.64%)
Mutual labels:  continuous-integration
Clean Marvel Kotlin
This repository contains a detailed sample app that implements Clean architecture and MVP in Kotlin using RxJava2, Retrofit
Stars: ✭ 27 (-50.91%)
Mutual labels:  continuous-integration
koshry
Run on CI, Apply Rules on the Build and Get the Result back to the Pull Request.
Stars: ✭ 59 (+7.27%)
Mutual labels:  continuous-integration
cpp14-project-template
A simple, cross-platform, and continuously integrated C++14 project template
Stars: ✭ 64 (+16.36%)
Mutual labels:  continuous-integration
swarmci
Swarm CI - Docker Swarm-based CI system or enhancement to existing systems.
Stars: ✭ 48 (-12.73%)
Mutual labels:  continuous-integration
setup-julia
This action sets up a Julia environment for use in actions by downloading a specified version of Julia and adding it to PATH.
Stars: ✭ 56 (+1.82%)
Mutual labels:  continuous-integration
rasa-train-test-gha
A GitHub action to run easily rasa train and rasa test in the CIs.
Stars: ✭ 26 (-52.73%)
Mutual labels:  continuous-integration
dump-env
A utility tool to create .env files
Stars: ✭ 81 (+47.27%)
Mutual labels:  continuous-integration
drevops
💧 + 🐳 + ✓✓✓ + 🤖 + ❤️ Build, Test, Deploy scripts for Drupal using Docker and CI/CD
Stars: ✭ 55 (+0%)
Mutual labels:  continuous-integration
teamcity-kubernetes-plugin
Run TeamCity cloud agents on Kubernetes cluster
Stars: ✭ 57 (+3.64%)
Mutual labels:  continuous-integration
cicdstatemgr
Utility for managing CICD state, sending notifications, and mediating Slack interactive messages & slash commands across multiple flows of execution in CICD platforms such as Tekton.
Stars: ✭ 25 (-54.55%)
Mutual labels:  continuous-integration
arduino-lint
Tool to check for problems with Arduino projects
Stars: ✭ 63 (+14.55%)
Mutual labels:  continuous-integration
laminas-ci-matrix-action
GitHub Action for creating a CI job matrix.
Stars: ✭ 19 (-65.45%)
Mutual labels:  continuous-integration
firebase-ci
Simplified Firebase interaction for continuous integration
Stars: ✭ 71 (+29.09%)
Mutual labels:  continuous-integration
bump-everywhere
🚀 Automate versioning, changelog creation, README updates and GitHub releases using GitHub Actions,npm, docker or bash.
Stars: ✭ 24 (-56.36%)
Mutual labels:  continuous-integration
npm-audit-ci
www.npmjs.com/package/npm-audit-ci
Stars: ✭ 18 (-67.27%)
Mutual labels:  continuous-integration
pipelinit-cli
Automatically generates pipelines for your project.
Stars: ✭ 36 (-34.55%)
Mutual labels:  continuous-integration
ci2go
CI2Go is a @circleci client for iPhone, iPad, Apple Watch and Mac.
Stars: ✭ 87 (+58.18%)
Mutual labels:  continuous-integration
travis
⛔ ARCHIVED ⛔ Set Up 'Travis' for Testing and Deployment
Stars: ✭ 61 (+10.91%)
Mutual labels:  continuous-integration
View All Similar Projects ➔

gitleaks-ci

Audit PRs on github before you hit that merge button

What is?

Gitleaks is great for doing thorough audits on repos, organizations, and/or users but not so great for hooking into CI pipelines. Gitleaks-CI is 50 lines of bash code that checks your PRs for secrets you probably shouldn't be commiting. Gitleaks-CI will do a simple regex check for each line of your PR diff. Fork this project if you want to add/remove regexes.

Alternatives?

Review the PR like a good human.

How to?

Gitleaks-CI is a single line of code placed in whatever CI service you or your organization uses.

bash <(curl -s https://raw.githubusercontent.com/zricethezav/gitleaks-ci/master/gitleaks.sh)

You should fork this repo and use the gitleaks.sh script you own rather than assuming my trust.

PR logs

Sample PR with a leak here

CircleCI

gitleaks-ci

Travis

gitleaks-ci

Accessing Private Repos

Gitleaks-CI requires the owner's credentials to access private repos

Travis

If you are using Travis read this to add GITHUB_USERNAME and GITHUB_API_TOKEN environment variables.

CircleCI

TODO

Jenkins

TODO

If you find leaks in your PR

Please read the Github article on removing sensitive data from a repository to remove the sensitive information from your history.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].