Skip to content

Implement secret scanning and security checks #270

New issue
New issue
Open
Open
Implement secret scanning and security checks#270
Labels
ci-cdCI/CD and DevOps relatedpriority:criticalCritical priority - blocks productionsecuritySecurity related issues
@manavgup

Description

@manavgup
manavgup
opened on Oct 4, 2025

Priority

🔴 CRITICAL

Description

Add git hooks and CI checks for secrets using gitleaks/truffleHog.

Current State

No secret scanning - risk of committing credentials

Files to Create

  • .github/workflows/security.yml
  • .pre-commit-config.yaml (update)
  • .gitleaks.toml

Acceptance Criteria

  • Pre-commit hook for secrets
  • CI workflow for secrets
  • Baseline scan of existing code
  • Block commits with secrets
  • Documentation

Effort

2-3 days

Related Issues

#169

Metadata

Metadata

Assignees

No one assigned

    Labels

    ci-cdCI/CD and DevOps relatedpriority:criticalCritical priority - blocks productionsecuritySecurity related issues

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions