From d41887c06a808cef0df31166cc18fa756d73a117 Mon Sep 17 00:00:00 2001 From: Kumaresansyncfusion Date: Tue, 15 Apr 2025 10:56:38 +0530 Subject: [PATCH 1/4] Update gitleaks.yaml --- .github/workflows/gitleaks.yaml | 24 +++++++++++++++--------- 1 file changed, 15 insertions(+), 9 deletions(-) diff --git a/.github/workflows/gitleaks.yaml b/.github/workflows/gitleaks.yaml index c115f77..f20f0ad 100644 --- a/.github/workflows/gitleaks.yaml +++ b/.github/workflows/gitleaks.yaml @@ -8,7 +8,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4.2.2 - name: Install the gitleaks run: wget https://github.com/zricethezav/gitleaks/releases/download/v8.15.2/gitleaks_8.15.2_linux_x64.tar.gz shell: pwsh @@ -21,18 +21,24 @@ jobs: continue-on-error: true - name: Setup NuGet.exe if: steps.gitleaks.outcome != 'success' - uses: nuget/setup-nuget@v1 + uses: nuget/setup-nuget@v2 with: nuget-version: latest - - name: Install the dotnet + - name: Install Mono if: steps.gitleaks.outcome != 'success' - uses: actions/setup-dotnet@v3 - with: - dotnet-version: '3.1.x' + run: | + sudo apt update + sudo apt install -y mono-complete + - name: Install the dotnet SDK to a custom directory + if: steps.gitleaks.outcome != 'success' + run: | + mkdir -p $GITHUB_WORKSPACE/dotnet + curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --install-dir $GITHUB_WORKSPACE/dotnet --channel 6.0 - name: Install the report tool packages if: steps.gitleaks.outcome != 'success' run: | + export PATH=$GITHUB_WORKSPACE/dotnet:$PATH nuget install "Syncfusion.Email" -source ${{ secrets.NexusFeedLink }} -ExcludeVersion - dir $GITHUB_WORKSPACE/Syncfusion.Email/lib/netcoreapp3.1 - dotnet $GITHUB_WORKSPACE/Syncfusion.Email/lib/netcoreapp3.1/GitleaksReportMail.dll ${{ secrets.CITEAMCREDENTIALS }} "$GITHUB_REF_NAME" ${{ secrets.NETWORKCREDENTIALS }} ${{ secrets.NETWORKKEY }} "$GITHUB_WORKSPACE" ${{ secrets.ORGANIZATIONNAME }} - exit 1 \ No newline at end of file + dir $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0 + dotnet $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0/GitleaksReportMail.dll ${{ secrets.CITEAMCREDENTIALS }} "$GITHUB_REF_NAME" ${{ secrets.NETWORKCREDENTIALS }} ${{ secrets.NETWORKKEY }} "$GITHUB_WORKSPACE" ${{ secrets.ORGANIZATIONNAME }} + exit 1 From d7e578c01efdd9485c4e4f04806da8b9d0e4c6a6 Mon Sep 17 00:00:00 2001 From: SyncfusionBuild <89958145+SyncfusionBuild@users.noreply.github.com> Date: Tue, 15 Apr 2025 16:19:03 +0530 Subject: [PATCH 2/4] Update gitleaks.yaml From 468e105f5e554fc4150d8e8ca9ad9c3dac2c9e98 Mon Sep 17 00:00:00 2001 From: Kumaresansyncfusion Date: Tue, 15 Apr 2025 16:27:11 +0530 Subject: [PATCH 3/4] Update gitleaks.yaml --- .github/workflows/gitleaks.yaml | 77 ++++++++++++++++++--------------- 1 file changed, 43 insertions(+), 34 deletions(-) diff --git a/.github/workflows/gitleaks.yaml b/.github/workflows/gitleaks.yaml index f20f0ad..393c1de 100644 --- a/.github/workflows/gitleaks.yaml +++ b/.github/workflows/gitleaks.yaml @@ -1,44 +1,53 @@ name: Secret Value found!! + on: push: public: + jobs: scan: name: gitleaks runs-on: ubuntu-latest steps: - - name: Checkout - uses: actions/checkout@v4.2.2 - - name: Install the gitleaks - run: wget https://github.com/zricethezav/gitleaks/releases/download/v8.15.2/gitleaks_8.15.2_linux_x64.tar.gz - shell: pwsh - - name: Extract the tar file - run: tar xzvf gitleaks_8.15.2_linux_x64.tar.gz - - name: Generate the report - id: gitleaks - run: $GITHUB_WORKSPACE/gitleaks detect -s $GITHUB_WORKSPACE -f json -r $GITHUB_WORKSPACE/leaksreport.json - shell: bash - continue-on-error: true - - name: Setup NuGet.exe - if: steps.gitleaks.outcome != 'success' - uses: nuget/setup-nuget@v2 - with: + - name: Checkout + uses: actions/checkout@v4.2.2 + + - name: Install the gitleaks + run: wget https://github.com/zricethezav/gitleaks/releases/download/v8.15.2/gitleaks_8.15.2_linux_x64.tar.gz + shell: pwsh + + - name: Extract the tar file + run: tar xzvf gitleaks_8.15.2_linux_x64.tar.gz + + - name: Generate the report + id: gitleaks + run: $GITHUB_WORKSPACE/gitleaks detect -s $GITHUB_WORKSPACE -f json -r $GITHUB_WORKSPACE/leaksreport.json + shell: bash + continue-on-error: true + + - name: Setup NuGet.exe + if: steps.gitleaks.outcome != 'success' + uses: nuget/setup-nuget@v2 + with: nuget-version: latest - - name: Install Mono - if: steps.gitleaks.outcome != 'success' - run: | - sudo apt update - sudo apt install -y mono-complete - - name: Install the dotnet SDK to a custom directory - if: steps.gitleaks.outcome != 'success' - run: | - mkdir -p $GITHUB_WORKSPACE/dotnet - curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --install-dir $GITHUB_WORKSPACE/dotnet --channel 6.0 - - name: Install the report tool packages - if: steps.gitleaks.outcome != 'success' - run: | - export PATH=$GITHUB_WORKSPACE/dotnet:$PATH - nuget install "Syncfusion.Email" -source ${{ secrets.NexusFeedLink }} -ExcludeVersion - dir $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0 - dotnet $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0/GitleaksReportMail.dll ${{ secrets.CITEAMCREDENTIALS }} "$GITHUB_REF_NAME" ${{ secrets.NETWORKCREDENTIALS }} ${{ secrets.NETWORKKEY }} "$GITHUB_WORKSPACE" ${{ secrets.ORGANIZATIONNAME }} - exit 1 + + - name: Install Mono + if: steps.gitleaks.outcome != 'success' + run: | + sudo apt update + sudo apt install -y mono-complete + + - name: Install the dotnet SDK to a custom directory + if: steps.gitleaks.outcome != 'success' + run: | + mkdir -p $GITHUB_WORKSPACE/dotnet + curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --install-dir $GITHUB_WORKSPACE/dotnet --channel 6.0 + + - name: Install the report tool packages + if: steps.gitleaks.outcome != 'success' + run: | + export PATH=$GITHUB_WORKSPACE/dotnet:$PATH + nuget install Syncfusion.Email -Source "${{ secrets.NexusFeedLink }}" -ExcludeVersion + dir $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0 + dotnet $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0/GitleaksReportMail.dll ${{ secrets.CITEAMCREDENTIALS }} "$GITHUB_REF_NAME" ${{ secrets.NETWORKCREDENTIALS }} ${{ secrets.NETWORKKEY }} "$GITHUB_WORKSPACE" ${{ secrets.ORGANIZATIONNAME }} + exit 1 From d24a0eee6069aa7c7b10b297660d4aa5cc18ca9f Mon Sep 17 00:00:00 2001 From: Kumaresansyncfusion Date: Tue, 15 Apr 2025 16:32:50 +0530 Subject: [PATCH 4/4] Update gitleaks.yaml --- .github/workflows/gitleaks.yaml | 77 +++++++++++++++------------------ 1 file changed, 34 insertions(+), 43 deletions(-) diff --git a/.github/workflows/gitleaks.yaml b/.github/workflows/gitleaks.yaml index 393c1de..f20f0ad 100644 --- a/.github/workflows/gitleaks.yaml +++ b/.github/workflows/gitleaks.yaml @@ -1,53 +1,44 @@ name: Secret Value found!! - on: push: public: - jobs: scan: name: gitleaks runs-on: ubuntu-latest steps: - - name: Checkout - uses: actions/checkout@v4.2.2 - - - name: Install the gitleaks - run: wget https://github.com/zricethezav/gitleaks/releases/download/v8.15.2/gitleaks_8.15.2_linux_x64.tar.gz - shell: pwsh - - - name: Extract the tar file - run: tar xzvf gitleaks_8.15.2_linux_x64.tar.gz - - - name: Generate the report - id: gitleaks - run: $GITHUB_WORKSPACE/gitleaks detect -s $GITHUB_WORKSPACE -f json -r $GITHUB_WORKSPACE/leaksreport.json - shell: bash - continue-on-error: true - - - name: Setup NuGet.exe - if: steps.gitleaks.outcome != 'success' - uses: nuget/setup-nuget@v2 - with: + - name: Checkout + uses: actions/checkout@v4.2.2 + - name: Install the gitleaks + run: wget https://github.com/zricethezav/gitleaks/releases/download/v8.15.2/gitleaks_8.15.2_linux_x64.tar.gz + shell: pwsh + - name: Extract the tar file + run: tar xzvf gitleaks_8.15.2_linux_x64.tar.gz + - name: Generate the report + id: gitleaks + run: $GITHUB_WORKSPACE/gitleaks detect -s $GITHUB_WORKSPACE -f json -r $GITHUB_WORKSPACE/leaksreport.json + shell: bash + continue-on-error: true + - name: Setup NuGet.exe + if: steps.gitleaks.outcome != 'success' + uses: nuget/setup-nuget@v2 + with: nuget-version: latest - - - name: Install Mono - if: steps.gitleaks.outcome != 'success' - run: | - sudo apt update - sudo apt install -y mono-complete - - - name: Install the dotnet SDK to a custom directory - if: steps.gitleaks.outcome != 'success' - run: | - mkdir -p $GITHUB_WORKSPACE/dotnet - curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --install-dir $GITHUB_WORKSPACE/dotnet --channel 6.0 - - - name: Install the report tool packages - if: steps.gitleaks.outcome != 'success' - run: | - export PATH=$GITHUB_WORKSPACE/dotnet:$PATH - nuget install Syncfusion.Email -Source "${{ secrets.NexusFeedLink }}" -ExcludeVersion - dir $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0 - dotnet $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0/GitleaksReportMail.dll ${{ secrets.CITEAMCREDENTIALS }} "$GITHUB_REF_NAME" ${{ secrets.NETWORKCREDENTIALS }} ${{ secrets.NETWORKKEY }} "$GITHUB_WORKSPACE" ${{ secrets.ORGANIZATIONNAME }} - exit 1 + - name: Install Mono + if: steps.gitleaks.outcome != 'success' + run: | + sudo apt update + sudo apt install -y mono-complete + - name: Install the dotnet SDK to a custom directory + if: steps.gitleaks.outcome != 'success' + run: | + mkdir -p $GITHUB_WORKSPACE/dotnet + curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --install-dir $GITHUB_WORKSPACE/dotnet --channel 6.0 + - name: Install the report tool packages + if: steps.gitleaks.outcome != 'success' + run: | + export PATH=$GITHUB_WORKSPACE/dotnet:$PATH + nuget install "Syncfusion.Email" -source ${{ secrets.NexusFeedLink }} -ExcludeVersion + dir $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0 + dotnet $GITHUB_WORKSPACE/Syncfusion.Email/lib/net6.0/GitleaksReportMail.dll ${{ secrets.CITEAMCREDENTIALS }} "$GITHUB_REF_NAME" ${{ secrets.NETWORKCREDENTIALS }} ${{ secrets.NETWORKKEY }} "$GITHUB_WORKSPACE" ${{ secrets.ORGANIZATIONNAME }} + exit 1