claude/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
infrastructure/.gitleaks.toml
root 27fc46664f
Some checks failed
0/0 projects applied successfully.
AI Review / AI Code Review (pull_request) Successful in 1s
Details
PR Checks / OpenTofu Validate & Policy (pull_request) Failing after 8s
Details
Security Scan / Security Scan (pull_request) Successful in 11s
Details
feat: migrate Atlantis from SOPS to OpenBao for Proxmox token 
- Replace sops -d --extract with bao kv get -field in workflow
- Remove .sops.yaml and encrypted proxmox.secrets.yaml
- Update .gitleaks.toml comment (remove SOPS reference)
- Proxmox token now fetched from OpenBao secret/infrastructure/proxmox
  via AppRole authentication (atlantis role)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-21 09:07:56 +01:00

11 lines
370 B
TOML
Raw Blame History

# Gitleaks configuration for infrastructure repo
# Allowlists for known patterns that are not actual leaked secrets
[allowlist]
description = "Infrastructure repo allowlist"
# Terraform tenant VM passwords are managed by VM Bot
# The .tf files contain passwords needed for Proxmox VM provisioning
paths = [
'''environments/production/tenant-vms\.tf''',
]
Reference in New Issue View Git Blame Copy Permalink