You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
GitHub Action
Secret Scanner
0.0.1
People will sometimes commit secrets to a GitHub repository
Uses Yelp/detect-secrets
to look for newly committed secrets. If it finds any potential secrets, it will:
- Fail
- Create a Job Summary with a list of the potential secrets found, and some advice on how to deal with the issue
- Provide an updated secrets baseline that contains the newly added secrets. This is useful if secrets that were discovered are not actually secrets.
Input | Description | Required | default value |
---|---|---|---|
detect-secrets-version | The version of Yelp/detect-secrets to use | no | 1.2.0 |
detect-secret-additional-args | Extra arguments to pass to the detect-secret binary when it is looking for secrets |
no | No additional arguments (empty string) |
baseline-file | A path to the baseline secrets file | no | .secrets.baseline |
python-version | The version of python to use | no | 3.10.4 |