We (security team at EF: https://www.eclipse.org/security/team/) would like to enable secret scanning for all of the repos of eclipse projects hosted on GitHub. For that purpose we suggest changes to the configuration that the project leads can review.
Why it does that
GitHub scans repositories for known types of secrets, to prevent fraudulent use of secrets that were committed accidentally.
Further notes
If you require additional information about GitHub Secret scanning before reviewing this pull request, please refer to the following GitHub document: Link to GitHub Document About secret scanning.
What this PR changes/adds
We (security team at EF: https://www.eclipse.org/security/team/) would like to enable secret scanning for all of the repos of eclipse projects hosted on GitHub. For that purpose we suggest changes to the configuration that the project leads can review.
Why it does that
GitHub scans repositories for known types of secrets, to prevent fraudulent use of secrets that were committed accidentally.
Further notes
If you require additional information about GitHub Secret scanning before reviewing this pull request, please refer to the following GitHub document: Link to GitHub Document About secret scanning.
Feel free to reach out if you have any questions.
Thank you,