Merge pull request #751 from alphagov/PP-12946-upgrade_detect_secrets

PP-12946 upgrade detect secrets
alphagov · Jul 22, 2024 · 4c3f1a9 · 4c3f1a9
2 parents a899e54 + 2c2e18c
commit 4c3f1a9
Show file tree

Hide file tree

Showing 2 changed files with 25 additions and 26 deletions.
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -1,6 +1,6 @@
 repos:
   - repo: https://github.com/Yelp/detect-secrets
-    rev: f6027a0521e044ba46e54611cabd787b7a88d1a9
+    rev: v1.5.0
     hooks:
       - id: detect-secrets
         args: ['--baseline', '.secrets.baseline']

diff --git a/.secrets.baseline b/.secrets.baseline
@@ -1,12 +1,15 @@
 {
-  "version": "1.1.0",
+  "version": "1.5.0",
   "plugins_used": [
     {
       "name": "ArtifactoryDetector"
     },
     {
       "name": "AWSKeyDetector"
     },
+    {
+      "name": "AzureStorageKeyDetector"
+    },
     {
       "name": "Base64HighEntropyString",
       "limit": 4.5
@@ -17,9 +20,15 @@
     {
       "name": "CloudantDetector"
     },
+    {
+      "name": "DiscordBotTokenDetector"
+    },
+    {
+      "name": "GitHubTokenDetector"
+    },
     {
       "name": "HexHighEntropyString",
-      "limit": 3
+      "limit": 3.0
     },
     {
       "name": "IbmCloudIamDetector"
@@ -37,15 +46,24 @@
     {
       "name": "MailchimpDetector"
     },
+    {
+      "name": "NpmDetector"
+    },
     {
       "name": "PrivateKeyDetector"
     },
+    {
+      "name": "SendGridDetector"
+    },
     {
       "name": "SlackDetector"
     },
     {
       "name": "SoftlayerDetector"
     },
+    {
+      "name": "SquareOAuthDetector"
+    },
     {
       "name": "StripeDetector"
     },
@@ -57,10 +75,6 @@
     {
       "path": "detect_secrets.filters.allowlist.is_line_allowlisted"
     },
-    {
-      "path": "detect_secrets.filters.common.is_baseline_file",
-      "filename": ".secrets.baseline"
-    },
     {
       "path": "detect_secrets.filters.common.is_ignored_due_to_verification_policies",
       "min_level": 2
@@ -91,33 +105,18 @@
     },
     {
       "path": "detect_secrets.filters.heuristic.is_templated_secret"
-    },
-    {
-      "path": "detect_secrets.filters.regex.should_exclude_file",
-      "pattern": [
-        "package-lock.json"
-      ]
     }
   ],
   "results": {
-    ".pre-commit-config.yaml": [
-      {
-        "type": "Hex High Entropy String",
-        "filename": ".pre-commit-config.yaml",
-        "hashed_secret": "d8371c23f86b4df4be2854848f6f28f13d7582f5",
-        "is_verified": false,
-        "line_number": 3
-      }
-    ],
-    "source/layouts/layout.erb": [
+    "source/layouts/layout.html.erb": [
       {
         "type": "Base64 High Entropy String",
-        "filename": "source/layouts/layout.erb",
+        "filename": "source/layouts/layout.html.erb",
         "hashed_secret": "e0cadc1a99504f3acead6e976b5773d8f34e1b94",
         "is_verified": false,
-        "line_number": 31
+        "line_number": 30
       }
     ]
   },
-  "generated_at": "2022-01-11T16:55:52Z"
+  "generated_at": "2024-07-22T13:19:52Z"
 }