forked from yamirghofran/dedicatedCV
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.gitleaks.toml
More file actions
55 lines (48 loc) · 1.28 KB
/
.gitleaks.toml
File metadata and controls
55 lines (48 loc) · 1.28 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
# Gitleaks configuration for secret scanning
# https://github.com/gitleaks/gitleaks
title = "Gitleaks Config"
[extend]
# Use the default gitleaks rules as a base
useDefault = true
# Allowlist specific patterns that are false positives
[allowlist]
description = "Allowlist for false positives"
# Paths to ignore (test files, examples, etc.)
paths = [
'''(^|/)\.env\.example$''',
'''(^|/)tests?/''',
'''(^|/)test_.*\.py$''',
'''(^|/).*_test\.py$''',
'''(^|/)conftest\.py$''',
'''(^|/).*\.test\.(ts|tsx|js|jsx)$''',
'''(^|/).*\.spec\.(ts|tsx|js|jsx)$''',
'''(^|/)node_modules/''',
'''(^|/)\.git/''',
'''(^|/)dist/''',
'''(^|/)build/''',
'''(^|/)coverage/''',
'''\.lock$''',
'''package-lock\.json$''',
'''bun\.lock$''',
'''uv\.lock$''',
]
# Regexes to ignore (example secrets, placeholders)
regexes = [
'''test-secret-key.*''',
'''your-secret-key-here''',
'''<your.*key.*>''',
'''REPLACE_ME''',
'''changeme''',
'''example\.com''',
'''localhost''',
]
# Commits to ignore (if any historical commits have false positives)
# commits = [
# "abc123...",
# ]
# Additional rules can be added here
# [[rules]]
# id = "custom-rule"
# description = "Custom secret pattern"
# regex = '''custom-pattern'''
# tags = ["custom"]