feat(github): add secrets check workflow

- Add new file `.github/workflows/secret-check.yml` for secrets check workflow - Use `actions/checkout@v4` to checkout code - Use `trufflesecurity/[email protected]` for TruffleHog OSS - Pass `--debug` and `--only-verified` as extra arguments
guanguans · Jan 23, 2024 · a73bff1 · a73bff1
1 parent 31bc189
commit a73bff1
Showing 1 changed file with 20 additions and 0 deletions.
diff --git a/.github/workflows/secret-check.yml b/.github/workflows/secret-check.yml
@@ -0,0 +1,20 @@
+name: secrets check
+
+on: [ push ]
+
+jobs:
+  security-check:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+#          ref: ${{ github.ref_name }}
+          fetch-depth: 0
+      - name: TruffleHog OSS
+        uses: trufflesecurity/[email protected]
+        with:
+#          path: ./
+#          base: ${{ github.event.repository.default_branch }}
+#          head: ${{ github.ref_name }}
+          extra_args: --debug --only-verified