fix: increase model download timeouts to 60 minutes #7
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Secret Scan | |
| on: | |
| pull_request: | |
| branches: [main] | |
| push: | |
| branches: [main] | |
| permissions: | |
| contents: read | |
| jobs: | |
| gitleaks: | |
| name: Scan for secrets | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| # gitleaks-action@v2 now requires a paid license key for GitHub org repos. | |
| # Use the OSS CLI instead to keep secret scanning enabled without paid secrets. | |
| - name: Install gitleaks (OSS) | |
| run: | | |
| set -euo pipefail | |
| VERSION="8.28.0" | |
| curl -sSL -o gitleaks.tgz "https://github.com/gitleaks/gitleaks/releases/download/v${VERSION}/gitleaks_${VERSION}_linux_x64.tar.gz" | |
| tar -xzf gitleaks.tgz gitleaks | |
| sudo mv gitleaks /usr/local/bin/gitleaks | |
| gitleaks version | |
| - name: Run gitleaks | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| run: | | |
| set -euo pipefail | |
| gitleaks detect \ | |
| --redact \ | |
| --verbose \ | |
| --source . \ | |
| --report-format json \ | |
| --report-path gitleaks-report.json \ | |
| --exit-code 1 | |
| - name: Upload gitleaks report (always) | |
| if: always() | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: gitleaks-report | |
| path: gitleaks-report.json | |
| continue-on-error: true |