Fix secrets

qduanmu · Aug 31, 2022 · 9c1cfed · 9c1cfed
1 parent bca1aa0
commit 9c1cfed
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 16 deletions.
diff --git a/.secrets.baseline b/.secrets.baseline
@@ -106,12 +106,6 @@
     },
     {
       "path": "detect_secrets.filters.heuristic.is_templated_secret"
-    },
-    {
-      "path": "detect_secrets.filters.regex.should_exclude_file",
-      "pattern": [
-        "tests/data/2018747/sources"
-      ]
     }
   ],
   "results": {
@@ -121,7 +115,7 @@
         "filename": ".gitlab-ci.yml",
         "hashed_secret": "a94a8fe5ccb19ba61c4c0873d391e987982fbbd3",
         "is_verified": true,
-        "line_number": 41,
+        "line_number": 74,
         "is_secret": false
       }
     ],
@@ -141,25 +135,25 @@
         "filename": "docker-compose.yml",
         "hashed_secret": "a94a8fe5ccb19ba61c4c0873d391e987982fbbd3",
         "is_verified": true,
-        "line_number": 13,
+        "line_number": 17,
         "is_secret": false
       },
       {
         "type": "Secret Keyword",
         "filename": "docker-compose.yml",
         "hashed_secret": "e5e9fa1ba31ecd1ae84f75caaa474f3a663f05f4",
         "is_verified": true,
-        "line_number": 14,
+        "line_number": 18,
         "is_secret": false
       }
     ],
-    "tests/cassettes/test_sca/test_download_lookaside_sources.yaml": [
+    "tests/data/2018747/sources": [
       {
-        "type": "Base64 High Entropy String",
-        "filename": "tests/cassettes/test_sca/test_download_lookaside_sources.yaml",
-        "hashed_secret": "490baec64d924fc05f7402642157034b066543fe",
+        "type": "Hex High Entropy String",
+        "filename": "tests/data/2018747/sources",
+        "hashed_secret": "253eadd83a1982d72ca3ab26d7c6108ba1768462",
         "is_verified": true,
-        "line_number": 17,
+        "line_number": 1,
         "is_secret": false
       }
     ],
@@ -344,5 +338,5 @@
       }
     ]
   },
-  "generated_at": "2022-08-30T20:29:50Z"
+  "generated_at": "2022-08-31T14:59:17Z"
 }
diff --git a/tox.ini b/tox.ini
@@ -98,6 +98,6 @@ deps = -r requirements/lint.txt
 allowlist_externals = bash
 # Check only files in the current branch which have changed, compared to the main branch, for secrets
 # Scan all files for secrets if the first form fails, since Gitlab CI uses shallow clone and does not have a "main" ref
-commands = /usr/bin/bash -c 'detect-secrets-hook --baseline .secrets.baseline --exclude-files tests/data/2018747/sources \
+commands = /usr/bin/bash -c 'detect-secrets-hook --baseline .secrets.baseline \
     $(git diff --name-only "origin/main..HEAD" || \
     git ls-files)'