.github/workflows/secret-scan.yml

Metadata

• Purpose: CI/CD workflow definition for repository automation.
• Domain: automation
• Language: yaml
• Bytes: 447
• Lines: 24
• Content hash (short): 86b63e91
• Source (start): .github/workflows/secret-scan.yml:1
• Source (end): .github/workflows/secret-scan.yml:24

Indexed Symbols

No indexed functions/methods detected in this file.

Markdown Headings (if applicable)

No markdown headings detected.

Source Preview

name: Secret Scan

on:
  pull_request:
  push:
    branches: ["main"]

permissions:
  contents: read

jobs:
  trufflehog:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v4

      - name: Run TruffleHog filesystem scan
        run: |
          docker run --rm \
            -v "$PWD:/repo" \
            trufflesecurity/trufflehog:latest \
            filesystem /repo --results=verified,unknown --fail