From c9347aa59874d105bb237ac8bb10c27ac60f8e4b Mon Sep 17 00:00:00 2001
From: Ismo Vuorinen <ismo@ivuorinen.net>
Date: Sun, 22 Mar 2026 14:24:07 +0200
Subject: [PATCH] fix(security): add missing gitleaks ignore entries for test
 tokens (#197)

- Added 10 fingerprints to .gitleaksignore for test tokens in historical commits
- Broadened .gitleaks.toml path allowlist to cover all *_test.go files
---
 .gitleaks.toml  |  2 ++
 .gitleaksignore | 20 ++++++++++++++++++++
 2 files changed, 22 insertions(+)

diff --git a/.gitleaks.toml b/.gitleaks.toml
index c0c99b2..99123fa 100644
--- a/.gitleaks.toml
+++ b/.gitleaks.toml
@@ -10,4 +10,6 @@ description = "Test fixture files containing placeholder tokens"
 paths = [
 	'''^testutil/test_constants\.go$''',
 	'''^testdata/''',
+	'''_test\.go$''',
+	'''^integration_test\.go$''',
 ]
diff --git a/.gitleaksignore b/.gitleaksignore
index e8e758d..9af25b0 100644
--- a/.gitleaksignore
+++ b/.gitleaksignore
@@ -26,3 +26,23 @@ internal/config_test.go:github-pat:162
 testdata/yaml-fixtures/configs/global-config-default.yml:github-pat:4
 testutil/test_constants.go:github-pat:363
 testutil/test_constants.go:github-pat:455
+
+# config_helper_test.go test tokens (commit 6291710)
+62917109069f227e8227a25448fe8c4242405309:internal/config_helper_test.go:generic-api-key:99
+62917109069f227e8227a25448fe8c4242405309:internal/config_helper_test.go:generic-api-key:101
+62917109069f227e8227a25448fe8c4242405309:internal/config_helper_test.go:github-pat:99
+62917109069f227e8227a25448fe8c4242405309:internal/config_helper_test.go:github-pat:101
+
+# wizard_test.go test tokens (commit 6291710)
+62917109069f227e8227a25448fe8c4242405309:internal/wizard/wizard_test.go:github-pat:621
+62917109069f227e8227a25448fe8c4242405309:internal/wizard/wizard_test.go:github-pat:624
+
+# integration_test.go test tokens (commit d09c791)
+d09c7918cb70017b71fdaeead197e18168e5f398:integration_test.go:generic-api-key:304
+
+# configuration_loader_test.go test tokens (commit d09c791)
+d09c7918cb70017b71fdaeead197e18168e5f398:internal/configuration_loader_test.go:generic-api-key:141
+
+# config_test.go test tokens (commits d09c791, 6291710)
+d09c7918cb70017b71fdaeead197e18168e5f398:internal/config_test.go:generic-api-key:133
+62917109069f227e8227a25448fe8c4242405309:internal/config_test.go:github-pat:929