pm/website-test
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ci: ativar gitleaks
DevSecOps Enterprise Pipeline / security-gate (push) Failing after 10s
Details
DevSecOps Enterprise Pipeline / deploy (push) Has been skipped
Details

Browse Source
This commit is contained in:
pedro
2026-05-08 10:24:59 +01:00
parent 6cc5359917
commit 10c81592c0
2 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitea/workflows/deploy.yaml
+5 -5
View File
@@ -12,11 +12,11 @@ jobs:
with:
fetch-depth: 0 # Necessário para o Gitleaks analisar histórico
# 1. SECRET SCANNING (Deteta chaves expostas no histórico e no código)
#- name: Gitleaks Scan
# run: |
# curl -sL https://github.com/gitleaks/gitleaks/releases/download/v8.18.2/gitleaks_8.18.2_linux_x64.tar.gz | tar -xz -C /tmp
# /tmp/gitleaks detect --source . --verbose --redact --exit-code 0
# 1. SECRET SCANNING (Deteta chaves expostas no histórico e no código)
- name: Gitleaks Scan
run: |
curl -sL https://github.com/gitleaks/gitleaks/releases/download/v8.18.2/gitleaks_8.18.2_linux_x64.tar.gz | tar -xz -C /tmp
/tmp/gitleaks detect --source . --verbose --redact --exit-code 0
# 2. SCA (Software Composition Analysis) - Verifica vulnerabilidades no Nginx
- name: Scan Docker Image Vulnerabilities (Trivy)