publication prep: gitleaksignore for synthetic test fixtures; releases go manual
All checks were successful
ci/woodpecker/push/build Pipeline was successful
All checks were successful
ci/woodpecker/push/build Pipeline was successful
ADR-0002 public flip (infra#20): the three gitleaks history findings are synthetic test fixtures (credential-detector + crypto tests) — ignored by fingerprint. release.yml moves from tag-trigger to workflow_dispatch: svu now auto-cuts tags on every release-worthy push, and implicit PyPI publishes on each bump are not wanted — releases stay deliberate. Dead ci.yml.disabled dropped. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
This commit is contained in:
Viktor Barzin
parent
03f0efcdff
commit
d49032b697
3 changed files with 6 additions and 75 deletions
5
.gitleaksignore
Normal file
5
.gitleaksignore
Normal file
|
|
@ -0,0 +1,5 @@
|
|||
# Synthetic test fixtures (credential-detector + crypto tests) — ruled false
|
||||
# positives during the ADR-0002 public flip (infra#20). gitleaks skips these.
|
||||
0ed5e1e016901abedae2c33049748e938bdfcf67:tests/test_crypto.py:generic-api-key:18
|
||||
0ed5e1e016901abedae2c33049748e938bdfcf67:tests/test_credential_detector.py:generic-api-key:113
|
||||
0ed5e1e016901abedae2c33049748e938bdfcf67:tests/test_credential_detector.py:private-key:37
|
||||
Loading…
Add table
Add a link
Reference in a new issue