disinto-admin/disinto
1
0
Fork 0
Code Issues 20 Pull requests 2 Projects Releases Packages Wiki Activity Actions

fix: add last-reviewed watermark SHA to secret-scan safe patterns
All checks were successful
ci/woodpecker/push/ci Pipeline was successful
Details
ci/woodpecker/pr/ci Pipeline was successful
Details
ci/woodpecker/pr/nomad-validate Pipeline was successful
Details
ci/woodpecker/pr/secret-scan Pipeline was successful
Details

Browse source
This commit is contained in:
Claude 2026-04-16 08:46:00 +00:00
parent e9c144a511
commit 6533f322e3
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
lib/secret-scan.sh
View file

@ -30,9 +30,10 @@ _SECRET_PATTERNS=(
_SAFE_PATTERNS=(
# Shell variable references: $VAR, ${VAR}, ${VAR:-default}
'\$\{?[A-Z_]+\}?'
# Git SHAs in typical git contexts (commit refs, not standalone secrets)
# Git SHAs in typical git contexts (commit refs, watermarks, not standalone secrets)
'commit [0-9a-f]{40}'
'Merge [0-9a-f]{40}'
'last-reviewed: [0-9a-f]{40}'
# Forge/GitHub URLs with short hex (PR refs, commit links)
'codeberg\.org/[^[:space:]]+'
'localhost:3000/[^[:space:]]+'