From 6247ecef2b5ba627abfa8628c221c867ea577f83 Mon Sep 17 00:00:00 2001
From: Dragos Cojocari <dragos-cojocari@users.noreply.github.com>
Date: Mon, 26 Jun 2023 14:05:32 +0300
Subject: [PATCH] chore: secrets scanning (#144)

---
 .circleci/config.yml    | 14 ++++++++++++++
 .gitleaksignore         |  1 +
 .pre-commit-config.yaml |  7 +++++++
 3 files changed, 22 insertions(+)
 create mode 100644 .circleci/config.yml
 create mode 100644 .gitleaksignore
 create mode 100644 .pre-commit-config.yaml

diff --git a/.circleci/config.yml b/.circleci/config.yml
new file mode 100644
index 00000000..4877e297
--- /dev/null
+++ b/.circleci/config.yml
@@ -0,0 +1,14 @@
+version: 2.1
+
+orbs:
+  prodsec: snyk/prodsec-orb@1.0
+  
+workflows:
+  version: 2
+  CICD:
+    jobs:
+      - prodsec/secrets-scan:
+          name: Scan repository for secrets
+          context:
+            - snyk-bot-slack
+          channel: hammerhead-alerts
diff --git a/.gitleaksignore b/.gitleaksignore
new file mode 100644
index 00000000..0d10b79e
--- /dev/null
+++ b/.gitleaksignore
@@ -0,0 +1 @@
+# add false positives here
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
new file mode 100644
index 00000000..a63e408d
--- /dev/null
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,7 @@
+# See https://pre-commit.com for more information
+# See https://pre-commit.com/hooks.html for more hooks
+repos:
+  - repo: https://github.com/gitleaks/gitleaks
+    rev: v8.17.0
+    hooks:
+      - id: gitleaks