search

eclipse-leda / .eclipsefdn

Repository to host configurations related to the Eclipse Foundation.
https://eclipse-leda.github.io/.eclipsefdn/
0 stars 2 forks source link

Enable secret scanning for all repos #2

Closed ghost closed 1 year ago

ghost commented 1 year ago

We (security team at EF: https://www.eclipse.org/security/team/) would like to enable secret scanning for all of the repos of eclipse projects hosted on GitHub. For that purpose we suggest changes to the configuration that the project leads can review.

github-actions[bot] commented 1 year ago
Diff for 119398999c4ad7ad10a0b6cf037fd9271777a160: ```diff Printing local diff for configuration at '/home/runner/work/.eclipsefdn/.eclipsefdn/otterdog-configs/otterdog.json' Actions are indicated with the following symbols: + create ! modify ! forced update - delete Organization eclipse-leda[id=eclipse-leda] ! repository[name="eclipse-leda.github.io"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-contrib-cloud-connector"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-contrib-container-update-agent"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-contrib-otel"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-contrib-self-update-agent"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-contrib-vehicle-update-manager"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-distro"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-example-applications"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="leda-utils"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } ! repository[name="meta-leda"] { ! secret_scanning = "disabled" -> "enabled" ! secret_scanning_push_protection = "disabled" -> "enabled" ! } Plan: 0 to add, 22 to change, 0 to delete. ``` ```diff Showing diff to a canonical version of the configuration at '/home/runner/work/.eclipsefdn/.eclipsefdn/otterdog-configs/otterdog.json' Organization eclipse-leda[id=eclipse-leda] ```
ghost commented 1 year ago

Hello,

If you require additional information about GitHub Secret scanning before reviewing this pull request, please refer to the following GitHub document: Link to GitHub Document About secret scanning.

Feel free to reach out if you have any questions.

Thank you, FP