yaml
10 lines · 1 tab
Kai Nakamura
Apr 2026
1 tab
repos:
- repo: https://github.com/gitleaks/gitleaks
rev: v8.18.4
hooks:
- id: gitleaks
- repo: https://github.com/Yelp/detect-secrets
rev: v1.5.0
hooks:
- id: detect-secrets
args: ["--baseline", ".secrets.baseline"]
1 file · yaml
Explain with highlit
I want secret leakage blocked before it reaches a remote repository. Local pre-commit hooks are not enough by themselves, but they cut down accidental exposure and teach the team what not to commit. The server-side or CI scan then becomes the final gate instead of the only gate.
Share this code
Here's the card — post it anywhere.