Update gitleaks action to 1.2.0 (#194)

* Update gitleaks action to 1.2.0 * Exclude gitleaks from dependabot updates
giantswarm · Dec 14, 2020 · 1f879f2 · 1f879f2
1 parent a836f00
commit 1f879f2
Show file tree

Hide file tree

Showing 4 changed files with 22 additions and 8 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -7,11 +7,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## Changed
+
+- Update `gitleaks action` to version `1.2.0` using `gitleaks` version `7.2.0`.
+
 ## [4.0.0] - 2020-12-08
 
 ## Removed
 
-- Remove `go mod tidy` workflow. 
+- Remove `go mod tidy` workflow.
 
 ## Added
 

diff --git a/pkg/gen/input/dependabot/internal/file/dependabot.go b/pkg/gen/input/dependabot/internal/file/dependabot.go
@@ -12,11 +12,12 @@ func NewCreateDependabotInput(p params.Params) input.Input {
 		Path:         filepath.Join(p.Dir, "dependabot.yml"),
 		TemplateBody: createDependabotTemplate,
 		TemplateData: map[string]interface{}{
-			"EcosystemGomod": params.EcosystemGomod(p),
-			"Ecosystems":     params.Ecosystems(p),
-			"Header":         params.Header("#"),
-			"Interval":       params.Interval(p),
-			"Reviewers":      params.Reviewers(p),
+			"EcosystemGithubActions": params.EcosystemGithubActions(p),
+			"EcosystemGomod":         params.EcosystemGomod(p),
+			"Ecosystems":             params.Ecosystems(p),
+			"Header":                 params.Header("#"),
+			"Interval":               params.Interval(p),
+			"Reviewers":              params.Reviewers(p),
 		},
 	}
 
@@ -26,6 +27,7 @@ func NewCreateDependabotInput(p params.Params) input.Input {
 var createDependabotTemplate = `{{ .Header }}
 {{- $interval := .Interval }}
 {{- $ecosystemGomod := .EcosystemGomod }}
+{{- $ecosystemGithubActions := .EcosystemGithubActions }}
 {{- $reviewers := .Reviewers }}
 version: 2
 updates:
@@ -47,6 +49,10 @@ updates:
       - dependency-name: k8s.io/*
         versions:
           - ">=0.19.0"
-{{- end }}
+  {{- end }}
+  {{- if eq $ecosystem $ecosystemGithubActions }}
+    ignore:
+      - dependency-name: zricethezav/gitleaks-action
+  {{- end }}
 {{- end }}
 `
diff --git a/pkg/gen/input/dependabot/internal/params/key.go b/pkg/gen/input/dependabot/internal/params/key.go
@@ -11,6 +11,10 @@ func Ecosystems(p Params) []string {
 	return p.Ecosystems
 }
 
+func EcosystemGithubActions(p Params) string {
+	return gen.EcosystemGithubActions.String()
+}
+
 func EcosystemGomod(p Params) string {
 	return gen.EcosystemGomod.String()
 }

diff --git a/pkg/gen/input/workflows/internal/file/gitleaks.go b/pkg/gen/input/workflows/internal/file/gitleaks.go
@@ -34,5 +34,5 @@ jobs:
       with:
         fetch-depth: '0'
     - name: gitleaks-action
-      uses: zricethezav/gitleaks-action@v1.1.4
+      uses: zricethezav/gitleaks-action@v1.2.0
 `