Buildpiper_Lab_03: Scanning our Codebase

Gitleaks

Now we have our code base cloned in our working environment lets ensure that our repository should not have any sensitive information, such as passwords, API keys, access tokens, and other confidential data.

Prerequisites for this Lab:-

Successful completion of lab 1 and 2.

What is Gitleaks ?

Gitleaks is an open-source SAST (static application security testing) command line tool for detecting and preventing hardcoded secrets like passwords, API keys and tokens in Git repositories.

Step 1:- Go to Your Job Template and Click on Edit Icon and Click on Add Step

Step 2:- Search for Gitleaks Add the Gitleaks steps in our job template.

Screenshot 2023-07-21 203219

Step 3:- Let's configure the Gitleaks Step and to do so add the following instructions and click on Save.

WORKSPACE: /bp/workspace
FORMAT_ARG: json
OUTPUT_ARG: gitleaks.json
SLEEP_DURATION: 5s
VALIDATION_FAILURE_ACTION: WARNING

Perfect, Lets Run Our Job and see what happens.

No Imposter Found Hurraayyy!!!!!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Buildpiper_Lab_03: Scanning our Codebase

Gitleaks

Clone this wiki locally