Add pipeline with Talisman secrets check on push

RISDEV-4541
digitalservicebund · Aug 14, 2024 · 22dbb56 · 22dbb56
1 parent 26b373e
commit 22dbb56
Showing 1 changed file with 19 additions and 0 deletions.
diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml
@@ -0,0 +1,19 @@
+name: Pipeline
+
+on:
+  # Run on any branch receiving a push
+  push:
+  # Allow manual trigger of the workflow
+  workflow_dispatch:
+
+jobs:
+  # Talisman Secrets Check
+  talisman-check:
+    runs-on: ubuntu-latest
+    if: ${{ github.ref == 'refs/heads/main' }}
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Detect secrets in incoming commits with Talisman
+        uses: digitalservicebund/talisman-secrets-scan-action@9a4cb85589e29a62b4546eb566119753a5680aeb