Snippets Groups Projects

gitleaks

chore(release): 1.1.1 [skip ci]

semantic-release-bot authored Jun 4, 2021

## [1.1.1](https://gitlab.com/Orange-OpenSource/tbc/gitleaks/compare/1.1.0...1.1.1) (2021-06-04)

### Bug Fixes

* force clone full commits history in gitleaks complete analysis ([0b2c51ef](https://gitlab.com/Orange-OpenSource/tbc/gitleaks/commit/0b2c51ef5d9cbb2794073939c2c18e9a457e5b66))

9fbaeeda

9fbaeeda Jun 4, 2021

Name	Last commit	Last update
.gitlab
templates
.gitignore
.gitlab-ci.yml
.releaserc.yml
CONTRIBUTE.md
DCO.txt
LICENSE.txt
README.md
bumpversion.sh
kicker.json
logo.png

GitLab CI template for Gitleaks

This project implements a generic GitLab CI template for Gitleaks.

When run on the master branch, Gitleaks will audit all commits from all branches.

When run on other branches, Gitleaks will run a quick analysis on the current branch.

Usage

In order to include this template in your project, add the following to your gitlab-ci.yml:

include:
  - project: 'Orange-OpenSource/tbc/gitleaks'
    ref: '1.1.1'
    file: '/templates/gitlab-ci-gitleaks.yml'

`gitleaks` and `gitleaks-quick` jobs configuration

Those jobs trigger a Gitleaks analysis (either on the complete repository, either on the current branch). They use the following configuration.

Name	description	default value
`GITLEAKS_IMAGE`	The Docker image used to run Gitleaks	`zricethezav/gitleaks:latest`
`GITLEAKS_RULES`	Gitleaks configuration rules to use (you may also provide your own `.gitleaks.toml` configuration file in your project)	none (uses default rules)
`GITLEAKS_ARGS`	Options for a full Gitleaks analysis (on master or develop branches)	`--verbose`
`GITLEAKS_QUICK_ARGS`	Options for a quick Gitleaks analysis (on feature branches)	`--verbose` (audit on the current branch)
`GITLEAKS_QUICK_DEPTH`	Number of commits to scan (on feature branches)	`10`