Page MenuHomePhabricator
Create Task
Maniphest T343255

Add secret-scanning options to Gitlab CI includes
Closed, ResolvedPublic
Actions

Description

We've used a handful of secret-scanning tools during our manual reviews: whispers, gitleaks, git secrets. Let's create a CI include template that leverages one or more of these tools.

Details

Other Assignee
sbassett
TitleReferenceAuthorSource BranchDest Branch
Add security template that scans secretsrepos/security/gitlab-ci-security-templates!15mstylessecret-seekermain
Customize query in GitLab

Related Objects
Search...

Event Timeline

sbassett created this task.Aug 1 2023, 5:42 PM
Restricted Application added a project: Security-Team. · View Herald TranscriptAug 1 2023, 5:42 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
sbassett added a parent task: T342177: [EPIC] Application Security Pipeline Components for Gitlab - Phase 2 Work.Aug 1 2023, 5:42 PM
sbassett moved this task from Incoming to In Progress on the Security-Team board.Aug 7 2023, 4:15 PM
CodeReviewBot added a project: Patch-For-Review.Aug 8 2023, 8:45 PM

mstyles opened https://gitlab.wikimedia.org/repos/security/gitlab-ci-security-templates/-/merge_requests/15

Draft: Add security template that scans secrets

CodeReviewBot added a comment.Aug 22 2023, 6:30 PM

sbassett merged https://gitlab.wikimedia.org/repos/security/gitlab-ci-security-templates/-/merge_requests/15

Add security template that scans secrets

sbassett closed this task as Resolved.Aug 22 2023, 6:32 PM
sbassett triaged this task as Low priority.
sbassett updated Other Assignee, added: sbassett.
sbassett removed a project: Patch-For-Review.
sbassett moved this task from In Progress to Our Part Is Done on the Security-Team board.Aug 22 2023, 6:44 PM
sbassett moved this task from Backlog to Done on the GitLab-Application-Security-Pipeline board.Dec 20 2023, 7:49 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL