Skip to content

guibranco/github-infisical-secrets-check-action

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

95 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

GitHub Infisical secrets check Action

GitHub repo GitHub last commit GitHub license

CI wakatime

🚨 :octocat: A GitHub action to check and report secret leaks in the repository using Infisical CLI.


Usage

The following workflow step will scan for secret leaks in your repository.

  - name: Infisical Secrets Check
    id: secrets-scan
    uses: guibranco/github-infisical-secrets-check-action@v3.0.0

Inputs


Outputs

  • secrets-leaked: The number of secrets leaked found by the Infisical CLI tool.

Example

With default (inherited) GitHub token

name: Infisical secrets check

on:
  workflow_dispatch:
  pull_request:

jobs:
  secrets-check:
    runs-on: ubuntu-latest
    permissions:
      pull-requests: write
    steps:
      - name: Infisical Secrets Check
        uses: guibranco/github-infisical-secrets-check-action@v3.0.0

With a custom GitHub token

name: Infisical secrets check

on:
  workflow_dispatch:
  pull_request:

jobs:
  secrets-check:
    runs-on: ubuntu-latest
    permissions:
      pull-requests: write
    steps:
      - name: Infisical Secrets Check
        uses: guibranco/github-infisical-secrets-check-action@v3.0.0
        with:
          gh_token: ${{ secrets.GH_TOKEN }}

Remember to add the repository secret GH_TOKEN.


Sample output

Success - βœ… No secrets leaked

success

Failure - 🚨 Secrets leaked!

failure

Packages

No packages published

Contributors 6