mirror of
https://github.com/containers/podman.git
synced 2025-08-06 19:44:14 +08:00
6cb10425d4
As an effort to catch potential secrets and/or credential leaks, add a github-actions workflow which is untouchable in a PR context. To additionally guard against accidents, also check recent branch history. This is especially important on newly created release-branches, which may begin with content from who-knows-where. Finally, since the new workflow bypasses PR-level changes to the scanner config and base-line. Add a Cirrus-CI invocation of the scanning tool to help catch tool-breaking changes from being merged. Signed-off-by: Chris Evich <cevich@redhat.com>
2 lines
3 B
JSON
2 lines
3 B
JSON
[]
|