Update oss_pygoat-devsecops-basic.yml

emmanuel-knafo · web-flow · commit 075f1e4ce906 · 2024-05-27T21:51:08.000-04:00
diff --git a/.github/workflows/oss_pygoat-devsecops-basic.yml b/.github/workflows/oss_pygoat-devsecops-basic.yml
@@ -145,27 +145,27 @@ jobs:
     steps:
       - name: checkout
         uses: actions/checkout@v4.1.0
-      # - name: Gitleaks
-      #   continue-on-error: true
-      #   # You may pin to the exact commit or the version.
-      #   # uses: gitleaks/gitleaks-action@e6dab246340401bf53eec993b8f05aebe80ac636
-      #   uses: gitleaks/gitleaks-action@v2.3.4
-      #   env:
-      #     GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-      #     #GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE}} # Only required for Organizations, not personal accounts.
-      # - name: Dependency Review
-      #   uses: actions/dependency-review-action@v4.3.2
-      #   with:
-      #     base-ref: ${{ github.ref }}
-      #     head-ref: ${{ github.sha }}
-      #     # Token for the repository. Can be passed in using `{{ secrets.GITHUB_TOKEN }}`.
-      #     repo-token: ${{ github.token }} # optional, default is ${{ github.token }}
-      #     # A boolean to determine if license checks should be performed
-      #     license-check: true # optional
-      #     # A boolean to determine if vulnerability checks should be performed
-      #     vulnerability-check: true # optional
-      #     # Show a summary of the OpenSSF Scorecard scores.
-      #     show-openssf-scorecard: true # optional
+      - name: Gitleaks
+        continue-on-error: true
+        # You may pin to the exact commit or the version.
+        # uses: gitleaks/gitleaks-action@e6dab246340401bf53eec993b8f05aebe80ac636
+        uses: gitleaks/gitleaks-action@v2.3.4
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          #GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE}} # Only required for Organizations, not personal accounts.
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v4.3.2
+        with:
+          base-ref: ${{ github.ref }}
+          head-ref: ${{ github.sha }}
+          # Token for the repository. Can be passed in using `{{ secrets.GITHUB_TOKEN }}`.
+          repo-token: ${{ github.token }} # optional, default is ${{ github.token }}
+          # A boolean to determine if license checks should be performed
+          license-check: true # optional
+          # A boolean to determine if vulnerability checks should be performed
+          vulnerability-check: true # optional
+          # Show a summary of the OpenSSF Scorecard scores.
+          show-openssf-scorecard: true # optional
   test-run_devopsshield_scan_linux:
     name: Run DevOps Shield Scan Linux
     needs:
