My gitleaks scan reports are generating the History of the failure from previous Commits. I've got those failures fixed.But still the previous histories are appearing in the gitleak scan report in jenkins. Can anyone have any idea on how to avoid the History of gitleak scan Failures?
Asked
Active
Viewed 883 times
1
-
How have you integrated gitleaks with your jenkins pipeline? If you can please help around this, I have been struggling to execute gitleaks through Jenkins pipeline to scan the source code – Vimal Patel Dec 23 '22 at 09:38
1 Answers
1
there are several options:
remove leaks from the git history, e.g. using https://rtyley.github.io/bfg-repo-cleaner/
add
.gitleaks.tomlconfig, e.g.
add [rules.allowlist]
description = "ignore commits"
commits = [ "commit-A", "commit-B"]
- or if applicable - to use
.gitleaksignorefile https://github.com/zricethezav/gitleaks#gitleaksignore
Źmicier Jaraševič
- 341
- 2
- 10