Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can i choose which files to exclude from scanning in the git-secrets-scan pipe?

Abdelmassih Abdelmassih
Abdelmassih Abdelmassih
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 13, 2025

I can not find any documentation regarding files/folders exclusion from git-secrets-scan pipe in bitbuckets pipelines

Answer
Watch
Like Be the first to like this
178 views

2 answers

0 votes
Igor Stoyanov
Igor Stoyanov
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
January 14, 2025

Hi @Abdelmassih AbdelmassihPlease, check the docs.
You should add paths under [allowlist] section in gitleaks.toml file.
Example:

# This is a global allowlist which has a higher order of precedence than rule-specific allowlists.
# If a commit listed in the `commits` field below is encountered then that commit will be skipped and no
# secrets will be detected for said commit. The same logic applies for regexes and paths.
[allowlist]
description = "global allow list"
commits = [ "commit-A", "commit-B", "commit-C"]
paths = [
  '''gitleaks\.toml''',
  '''(.*?)(jpg|gif|doc)'''
]

Regards, Igor

Reply
0 votes
Sahir Maharaj
Sahir Maharaj
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 13, 2025

Hello @Abdelmassih Abdelmassih

Based on my experience, the git-secrets-scan pipe in Bitbucket Pipelines currently doesn’t seem to have explicit documentation or built-in options for excluding specific files or folders.

However, you can achieve this indirectly by modifying your pipeline configuration to exclude certain paths from being scanned. This could involve creating a .gitignore-like file or customizing the script that invokes the pipe to filter files.

Opening a ticket with Atlassian support at https://support.atlassian.com/contact/#/ may provide clarity or a workaround.

 

 

Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
TAGS
AUG Leaders

Atlassian Community Events

    See all events