mirror of
https://github.com/ivuorinen/gh-action-readme.git
synced 2026-02-19 16:51:34 +00:00
Ismo Vuorinen
ce02d36929
- Add govulncheck, Snyk, and Trivy vulnerability scanning - Create security workflow for automated scanning on push/PR/schedule - Add gitleaks for secrets detection and prevention - Implement EditorConfig linting with eclint and editorconfig-checker - Update Makefile with security and formatting targets - Create SECURITY.md with vulnerability reporting guidelines - Configure Dependabot for automated dependency updates - Fix all EditorConfig violations across codebase - Update Go version to 1.23.10 to address stdlib vulnerabilities - Add tests for internal/helpers package (80% coverage) - Remove deprecated functions and migrate to error-returning patterns - Fix YAML indentation in test fixtures to resolve test failures
26 lines
468 B
Plaintext
26 lines
468 B
Plaintext
# Gitleaks ignore patterns
|
|
# https://github.com/gitleaks/gitleaks
|
|
|
|
# Ignore test files with dummy secrets
|
|
**/testdata/**
|
|
**/test/**
|
|
**/*_test.go
|
|
|
|
# Ignore example configurations
|
|
**/examples/**
|
|
**/docs/**
|
|
|
|
# Common false positives
|
|
# Generic test tokens
|
|
test_token_*
|
|
dummy_*
|
|
fake_*
|
|
example_*
|
|
|
|
# GitHub Actions test tokens
|
|
GITHUB_TOKEN=fake_token
|
|
GITHUB_TOKEN=${{ secrets.GITHUB_TOKEN }}
|
|
|
|
# Ignore specific lines (use commit:file:line format)
|
|
# abc123:path/to/file.go:42
|