A secretlint rule for GitHub.
Install with npm:
npm install @secretlint/secretlint-rule-github
Via .secretlintrc.json
(Recommended)
{
"rules": [
{
"id": "@secretlint/secretlint-rule-github"
}
]
}
found GitHub Token({{typeName}}): {{KEY}}
Disallow to write GitHub Token.
-
ghp_
for Personal Access Tokens -
gho_
for OAuth Access tokens -
ghu_
for GitHub App user-to-server tokens -
ghs_
for GitHub App server-to-server tokens -
ghr_
for GitHub App refresh tokens -
github_pat_
for fine-grained personal access tokens
This rule can detect a new format of GitHub Token.
- Authentication token format updates are generally available | GitHub Changelog
- Introducing fine-grained personal access tokens for GitHub | The GitHub Blog
-
allows: string[]
- Allows a list of RegExp-like String
See Releases page.
Install devDependencies and Run npm test
:
npm test
Pull requests and stars are always welcome.
For bugs and feature requests, please create an issue.
- Fork it!
- Create your feature branch:
git checkout -b my-new-feature
- Commit your changes:
git commit -am 'Add some feature'
- Push to the branch:
git push origin my-new-feature
- Submit a pull request :D
MIT © azu