Skip to content

security: add initial secret scan config#2

Open
tools-netlify wants to merge 1 commit into
mainfrom
security/secret_scan_workflow
Open

security: add initial secret scan config#2
tools-netlify wants to merge 1 commit into
mainfrom
security/secret_scan_workflow

Conversation

@tools-netlify

Copy link
Copy Markdown
Collaborator

NOTICE: If this pull request does not apply to your repository, feel free to close this pull request. This is a pull request generated by github-tools to add an initial secret scan config. If your repo is critical or may contain secrets in code, you will want to use this. It is currently setup to scan all files it finds. See more documentation at https://github.com/netlify/security-netlify-trufflehog3
It is best to start by running the scan by configuring to create_github_issue: false, and review the output in the Github Action console. Add false positive findings to the "suppressions-trufflehog3" file to ensure they wont be reported on the next scan, and change the "create_github_issue: true" value when you are ready to have issues created.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant