From 98eba938e2defa4eca516517113e5bfb0c38969f Mon Sep 17 00:00:00 2001
From: xuelix <33909469+xuelix@users.noreply.github.com>
Date: Thu, 4 Mar 2021 21:00:22 +0000
Subject: [PATCH] Added git-secrets check to Github Actions (#270)

Co-authored-by: Gary Wicker <14828980+gkwicker@users.noreply.github.com>
---
 .github/workflows/ci.yml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index f5ff4eefb..cb689b7d4 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -44,3 +44,23 @@ jobs:
       - name: URL Checker
         run: |
             bash kernel/.github/actions/url_verifier.sh kernel
+
+  git-secrets:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+        with:
+          submodules: recursive
+      - name: Checkout awslabs/git-secrets
+        uses: actions/checkout@v2
+        with:
+          repository: awslabs/git-secrets
+          ref: master
+          path: git-secrets
+      - name: Install git-secrets
+        run: cd git-secrets && sudo make install && cd ..
+      - name: Run git-secrets
+        run: |
+          git-secrets --register-aws
+          git-secrets --scan
+