Refactor security scanning and database setup
- Update security scan workflow to utilize a dedicated script for checking secrets, improving detection accuracy. - Modify database connection setup in multiple scripts to use an environment variable fallback for DATABASE_URL, enhancing flexibility in different environments.
This commit is contained in:
denshooter
@@ -0,0 +1,29 @@
|
||||
# Ignore patterns for secret detection
|
||||
# These are legitimate authentication patterns, not actual secrets
|
||||
|
||||
# Authentication-related code patterns
|
||||
*password*
|
||||
*username*
|
||||
*credentials*
|
||||
*csrf*
|
||||
*session*
|
||||
*token*
|
||||
*key*
|
||||
*auth*
|
||||
|
||||
# Environment variable references
|
||||
process.env.*
|
||||
|
||||
# Cache and Redis patterns
|
||||
*cache*
|
||||
*redis*
|
||||
|
||||
# Rate limiting patterns
|
||||
*rateLimit*
|
||||
|
||||
# Next.js build artifacts
|
||||
.next/
|
||||
|
||||
# Generated files
|
||||
*.d.ts
|
||||
*.js.map
|
||||
Reference in New Issue
Block a user