diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml index 8772979..40af08c 100644 --- a/.github/workflows/gitleaks.yml +++ b/.github/workflows/gitleaks.yml @@ -7,7 +7,6 @@ on: permissions: contents: read - pull-requests: read jobs: gitleaks: @@ -19,7 +18,11 @@ jobs: with: fetch-depth: 0 + - name: Install gitleaks v8.30.1 + run: | + wget -q https://github.com/gitleaks/gitleaks/releases/download/v8.30.1/gitleaks_8.30.1_linux_x64.tar.gz + tar -xzf gitleaks_8.30.1_linux_x64.tar.gz gitleaks + chmod +x gitleaks + - name: Scan for secrets - uses: gitleaks/gitleaks-action@v3 - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + run: ./gitleaks detect --source . --exit-code 1