ci: desativar gitleaks temporariamente para testar sonarqube

2026-05-08 10:15:24 +01:00
parent 10aa4f6633
commit bd679a6594
1 changed files with 4 additions and 4 deletions
@@ -13,10 +13,10 @@ jobs:
          fetch-depth: 0 # Necessário para o Gitleaks analisar histórico

      # 1. SECRET SCANNING (Deteta chaves expostas no histórico e no código)
-      - name: Gitleaks Scan
-        run: |
-          curl -sL https://github.com/gitleaks/gitleaks/releases/download/v8.18.2/gitleaks_8.18.2_linux_x64.tar.gz | tar -xz -C /tmp
-          /tmp/gitleaks detect --source . --verbose --redact --exit-code 0
+      #- name: Gitleaks Scan
+      #  run: |
+      #    curl -sL https://github.com/gitleaks/gitleaks/releases/download/v8.18.2/gitleaks_8.18.2_linux_x64.tar.gz | tar -xz -C /tmp
+      #    /tmp/gitleaks detect --source . --verbose --redact --exit-code 0

      # 2. SCA (Software Composition Analysis) - Verifica vulnerabilidades no Nginx
      - name: Scan Docker Image Vulnerabilities (Trivy)