A plugin to detect hard-coded secrets and sensitive data in your source code files.
Build the plugin binary:
scripts/build.sh
Build the plugin image:
docker build -t plugins/gitleaks -f docker/Dockerfile .
Execute the plugin from your current working directory:
docker run --rm \
-e DRONE_COMMIT_SHA=8f51ad7884c5eb69c11d260a31da7a745e6b78e2 \
-e DRONE_COMMIT_BRANCH=master \
-e DRONE_BUILD_NUMBER=43 \
-e DRONE_BUILD_STATUS=success \
-w /drone/src \
-v $(pwd):/drone/src \
plugins/gitleaks
You will need to install gitleaks, and have it on your path to run the plugin in debug mode.