diff --git a/README.md b/README.md index f8202d4c4b50b24e5c94687bd7e49aeeb405666f..4219cc1d8c11fa32f9d2c484fc762b98fe1a2935 100644 --- a/README.md +++ b/README.md @@ -50,7 +50,7 @@ They use the following configuration. | --------------------- | -------------------------------------- | ----------------- | | `image` / `GITLEAKS_IMAGE` | The Docker image used to run Gitleaks | `registry.hub.docker.com/zricethezav/gitleaks:latest` | | `rules` / `GITLEAKS_RULES` | Gitleaks [configuration rules](https://github.com/zricethezav/gitleaks#configuration) to use (you may also provide your own `.gitleaks.toml` configuration file in your project). | _none_ (uses default rules) | -| `args` / `GITLEAKS_ARGS` | [Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches) | _none_ | +| `args` / `GITLEAKS_ARGS` | [Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches) | `--verbose` | ### Configuring Gitleaks rules diff --git a/kicker.json b/kicker.json index 09b902760d14ad4c746256b31d48b38fe5911c9f..0d5bc83cb866f607b7ba16777ee695d9834e09dd 100644 --- a/kicker.json +++ b/kicker.json @@ -19,6 +19,7 @@ { "name": "GITLEAKS_ARGS", "description": "[Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches)", + "default": "--verbose", "advanced": true } ] diff --git a/templates/gitlab-ci-gitleaks.yml b/templates/gitlab-ci-gitleaks.yml index 8f23dfdf59bb58cf82c3df067936af7af1ca659d..aec064a043f1ded793187683bdc325e1b8bda1d5 100644 --- a/templates/gitlab-ci-gitleaks.yml +++ b/templates/gitlab-ci-gitleaks.yml @@ -24,7 +24,7 @@ spec: default: '' args: description: '[Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches)' - default: '' + default: '--verbose' --- workflow: rules: @@ -233,7 +233,7 @@ gitleaks: - install_gitleaks_rules - git config --global --add safe.directory "${CI_PROJECT_DIR}" script: - - gitleaks detect ${TRACE+--verbose} --source . $gitleaks_rule_opts --report-path reports/gitleaks.native.json $GITLEAKS_ARGS + - gitleaks detect ${TRACE+--log-level debug} --source . $gitleaks_rule_opts --report-path reports/gitleaks.native.json $GITLEAKS_ARGS artifacts: name: "$CI_JOB_NAME artifacts from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG" when: always