AniNIX/Kapisi
3
0
Fork 0
Code Issues 30 Pull Requests 1 Projects 1 Releases Wiki Activity

Update to use grep -F to find secrets -- it prevents special characters in secrets being interpreted.

Browse Source
This commit is contained in:
DarkFeather
2025-12-14 11:42:22 -06:00
parent 31992aa487
commit f00f95a689
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
precommit-hooks/find-passwords-in-files
View File

@@ -31,7 +31,7 @@ fi
IFS=" IFS="
" "
for i in `ansible-vault decrypt --output - ${ANSIBLE_VAULT_FILE} | sed 's/\s\?-\?\s\?[A-Za-z0-9_]\+://' | grep -vE '\||password|^\s\?$|#|https://' | sed "s/^ \+['\"]\?//" | sed "s/[\"']\s\?//" | sort | uniq`; do for i in `ansible-vault decrypt --output - ${ANSIBLE_VAULT_FILE} | sed 's/\s\?-\?\s\?[A-Za-z0-9_]\+://' | grep -vE '\||password|^\s\?$|#|https://' | sed "s/^ \+['\"]\?//" | sed "s/[\"']\s\?//" | sort | uniq`; do
grep -rl "${i}" . 2>/dev/null grep -rlF "${i}" .
if [ $? -ne 1 ]; then if [ $? -ne 1 ]; then
echo "A secret starting with $(echo "$i" | cut -c 1-7) was found in the files above." echo "A secret starting with $(echo "$i" | cut -c 1-7) was found in the files above."
exit 1; exit 1;