-
Notifications
You must be signed in to change notification settings - Fork 0
/
.pre-commit-config.yaml
89 lines (80 loc) · 2.52 KB
/
.pre-commit-config.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
---
##### CI for use by github no need for action to be added
##### https://pre-commit.com/hooks.html
##### Inherited
ci:
autofix_prs: false
skip:
# This steps run in the ci workflow. Keep in sync
- ansible-lint
default_language_version:
python: python3.12
repos:
- repo: https://github.com/codespell-project/codespell
rev: v2.3.0
hooks:
- id: codespell
args:
- --ignore-words-list=ihs,ro,fo,iif,chage
- --skip="./.*,*.csv,*.json"
- --quiet-level=2
exclude_types:
- csv
- json
- repo: https://github.com/pre-commit/pre-commit-hooks
rev: v5.0.0
hooks:
# Safety
- id: detect-private-key
# git checks
- id: check-merge-conflict
- id: check-added-large-files
- id: check-case-conflict
# General checks
- id: trailing-whitespace
name: Trim Trailing Whitespace
description: This hook trims trailing whitespace.
entry: trailing-whitespace-fixer
language: python
types: [text]
args: [--markdown-linebreak-ext=md]
- id: end-of-file-fixer
- id: requirements-txt-fixer
- id: check-yaml
args: [--allow-multiple-documents]
- id: mixed-line-ending
# Scan for passwords
- repo: https://github.com/Yelp/detect-secrets
rev: v1.5.0
hooks:
- id: detect-secrets
args:
- --exclude-files=templates/pam/pwquality
- --exclude-files=templates/pam/pwhistory.j2
- repo: https://github.com/gitleaks/gitleaks
rev: v8.21.1
hooks:
- id: gitleaks
- repo: https://github.com/adrienverge/yamllint.git
rev: v1.35.1 # or higher tag
hooks:
- id: yamllint
# ANSIBLE --------------------------------------------------------------------
- repo: https://github.com/ansible-community/ansible-lint
rev: v24.9.2
hooks:
- id: ansible-lint
name: Ansible-lint
description: This hook runs ansible-lint.
entry: python3 -m ansiblelint -v --force-color -c .ansible-lint
language: python
# do not pass files to ansible-lint, see:
# https://github.com/ansible/ansible-lint/issues/611
pass_filenames: false
always_run: true
additional_dependencies:
# https://github.com/pre-commit/pre-commit/issues/1526
# If you want to use specific version of ansible-core or ansible, feel
# free to override `additional_dependencies` in your own hook config
# file.
- ansible-core>=2.16.5