-
Notifications
You must be signed in to change notification settings - Fork 9
Expand file tree
/
Copy path.gitleaks.toml
More file actions
28 lines (23 loc) · 833 Bytes
/
.gitleaks.toml
File metadata and controls
28 lines (23 loc) · 833 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
# Gitleaks configuration for Basecamp CLI
# https://github.com/gitleaks/gitleaks#configuration
title = "Basecamp CLI gitleaks config"
# Allowlist specific false positives
[allowlist]
description = "Known safe patterns"
# OAuth client secrets are public by design (they're embedded in CLI binaries)
# See: https://www.oauth.com/oauth2-servers/mobile-and-native-apps/
regexTarget = "match"
regexes = [
# Public OAuth client secrets for native apps (not actual secrets)
'''launchpadClientSecret\s*=\s*"[a-f0-9]+"''',
'''bc3ClientSecret\s*=\s*"[a-f0-9]+"''',
# Domain names (not secrets)
'''launchpad\.37signals\.com''',
'''basecampapi\.(com|localhost)''',
]
# Test files with fake/example tokens
paths = [
'''_test\.go$''',
'''benchmarks/.*''',
'''skills-benchmarking/.*''',
]