diff --git a/README.md b/README.md index 05355e92ac884f4d797646270e220b216982a6f0..d67f81c2455efc62145a898bb7c6b2866c3b7c1a 100644 --- a/README.md +++ b/README.md @@ -50,7 +50,7 @@ They use the following configuration. | --------------------- | -------------------------------------- | ----------------- | | `image` / `GITLEAKS_IMAGE` | The Docker image used to run Gitleaks | `registry.hub.docker.com/zricethezav/gitleaks:latest` | | `rules` / `GITLEAKS_RULES` | Gitleaks [configuration rules](https://github.com/zricethezav/gitleaks#configuration) to use (you may also provide your own `.gitleaks.toml` configuration file in your project). | _none_ (uses default rules) | -| `args` / `GITLEAKS_ARGS` | [Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches) | `--verbose` | +| `args` / `GITLEAKS_ARGS` | [Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches) | _none_ | ### Configuring Gitleaks rules diff --git a/kicker.json b/kicker.json index 6856fba516b85ee55d3d061fa490410136156173..09b902760d14ad4c746256b31d48b38fe5911c9f 100644 --- a/kicker.json +++ b/kicker.json @@ -19,20 +19,6 @@ { "name": "GITLEAKS_ARGS", "description": "[Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches)", - "default": "--verbose", - "advanced": true - }, - { - "name": "GITLEAKS_QUICK_ARGS", - "description": "[Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a quick Gitleaks analysis (on feature branches)", - "default": "--verbose", - "advanced": true - }, - { - "name": "GITLEAKS_QUICK_DEPTH", - "description": "Number of commits to scan (on feature branches)", - "type": "number", - "default": "10", "advanced": true } ] diff --git a/templates/gitlab-ci-gitleaks.yml b/templates/gitlab-ci-gitleaks.yml index f17bdb6b9d8f16a332d43c9f3d36274dae7a1bf3..c8489eb63e114990989d528562e15504e4555ab4 100644 --- a/templates/gitlab-ci-gitleaks.yml +++ b/templates/gitlab-ci-gitleaks.yml @@ -24,14 +24,7 @@ spec: default: '' args: description: '[Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a full Gitleaks analysis (on master or develop branches)' - default: --verbose - quick-args: - description: '[Options](https://github.com/zricethezav/gitleaks/wiki/Options) for a quick Gitleaks analysis (on feature branches)' - default: --verbose - quick-depth: - description: Number of commits to scan (on feature branches) - type: number - default: 10 + default: '' --- workflow: rules: @@ -81,8 +74,6 @@ variables: GITLEAKS_IMAGE: $[[ inputs.image ]] GITLEAKS_ARGS: $[[ inputs.args ]] GITLEAKS_RULES: $[[ inputs.rules ]] - GITLEAKS_QUICK_ARGS: $[[ inputs.quick-args ]] - GITLEAKS_QUICK_DEPTH: $[[ inputs.quick-depth ]] # default production ref name (pattern) PROD_REF: /^(master|main)$/ @@ -242,7 +233,7 @@ gitleaks: - install_gitleaks_rules - git config --global --add safe.directory "${CI_PROJECT_DIR}" script: - - gitleaks detect ${TRACE+--log-level debug} --source . $gitleaks_rule_opts --report-path reports/gitleaks.native.json $GITLEAKS_ARGS + - gitleaks detect ${TRACE+--verbose} --source . $gitleaks_rule_opts --report-path reports/gitleaks.native.json $GITLEAKS_ARGS artifacts: name: "$CI_JOB_NAME artifacts from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG" when: always