From ebea9f1039949fe708131097d161a1d182b1b3c2 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Thu, 1 Aug 2024 03:15:51 +0200
Subject: [PATCH] ci(gitleaks): Enable gitleaks in CI

---
 .gitlab-ci.yml  |  6 ++++++
 .gitleaksignore | 51 +++++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 57 insertions(+)
 create mode 100644 .gitleaksignore

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index fe8787b9c..cf6bb5034 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -3,12 +3,18 @@ include:
   - local: 'images/.utils/gitlab-ci.yaml'
   - local: 'charts/.utils/gitlab-ci.yaml'
   - local: 'docs/.gitlab-ci.yaml'
+  - template: Jobs/Secret-Detection.gitlab-ci.yml
 stages:
   - lint
   - build
   - changelog
   - release
 
+# GitLab secret detection using gitleaks
+secret_detection:
+  stage: lint
+  tags:
+    - kubernetes
 
 # Automated month-based releases
 release-changelog-full:
diff --git a/.gitleaksignore b/.gitleaksignore
new file mode 100644
index 000000000..3f7666f7c
--- /dev/null
+++ b/.gitleaksignore
@@ -0,0 +1,51 @@
+34684dc4e1fed6c7e13dc2ada3020c4c4359c10a:charts/mok/tests/__snapshot__/postfix_test.yaml.snap:generic-api-key:422
+b858142c2d01856f7a74a238d04c42a2546bd791:charts/mok/tests/__snapshot__/postfix_test.yaml.snap:generic-api-key:422
+bd8f915bee139edfc8723d7f532fa83da37843b6:charts/mok/tests/__snapshot__/postfix_test.yaml.snap:generic-api-key:422
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:62
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:209
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:210
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:211
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:212
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:66
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:164
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:282
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:283
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:284
+ab86c48207d0625abe06677e2314f443c63bc6fa:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:285
+1b8a9685d7fe6824108665cb1abf61eeeb7ea83b:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:71
+1b8a9685d7fe6824108665cb1abf61eeeb7ea83b:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:159
+1b8a9685d7fe6824108665cb1abf61eeeb7ea83b:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:269
+1b8a9685d7fe6824108665cb1abf61eeeb7ea83b:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:270
+1b8a9685d7fe6824108665cb1abf61eeeb7ea83b:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:271
+1b8a9685d7fe6824108665cb1abf61eeeb7ea83b:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:272
+0b757804907311931c81ee00789441fb9645314c:charts/mastodon/tests/__snapshot__/80_subchart_redis_test.yaml.snap:generic-api-key:29
+0b757804907311931c81ee00789441fb9645314c:charts/mastodon/tests/__snapshot__/80_subchart_redis_test.yaml.snap:generic-api-key:115
+0b757804907311931c81ee00789441fb9645314c:charts/mastodon/tests/__snapshot__/80_subchart_redis_test.yaml.snap:generic-api-key:185
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1015
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1106
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1181
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1638
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1639
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1640
+d33c4fb0dd4fa038ac4b98307e5090147157a0fe:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:1641
+ab7073818d52ba80c28ab0db02c0b969d6d8ba02:charts/hedgedoc/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:59
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:62
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:169
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:170
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:171
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_web_test.yaml.snap:generic-api-key:172
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:66
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:134
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:135
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:136
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/50_sidekiq_test.yaml.snap:generic-api-key:137
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:134
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:221
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:293
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:743
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:744
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:745
+b2e701dfe5ff5e9f3b4ae6bdbbb05c663f118c69:charts/mastodon/tests/__snapshot__/98_snapshot_test.yaml.snap:generic-api-key:746
+d7f16921663eb4d25f443b5b531162ca1dfbd05c:images/kos/workarounds/fs/etc/ostree/auth.json:generic-api-key:4
+83b7128f16c7b38c55678ce744e83aaa5e7e7cd4:clusters/k8s01/longhorn/oauth2.yaml:generic-api-key:83
+b56482340aa3ee52ded0ad5c072ab3cb38273d22:clusters/k8s01/longhorn/oauth2.yaml:generic-api-key:85
-- 
GitLab