github/infisical
1
0
Fork 0
mirror of https://github.com/Infisical/infisical.git synced 2026-01-09 15:38:03 -05:00
Code Issues Packages Projects Releases Wiki Activity

improve pre commit docs

Browse Source
This commit is contained in:
Maidul Islam
2023-05-23 19:45:10 -04:00
parent f2de1778cb
commit a7fb0786f9
3 changed files with 49 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
docs/cli/commands/scan-install.mdx Normal file
View File

@@ -0,0 +1,23 @@
---
title: "scan install"
description: "Add various scanning tools seamlessly into your development lifecycle"
---
```bash
infisical scan install --pre-commit-hook
```
## Description
The command `infisical scan install` is designed to incorporate various scanning tools seamlessly into your development lifecycle.
Initially, we are offering users the ability to install a pre-commit hook. This hook conducts an automatic scan for any exposed secrets in your commits before they are pushed.
### Flags
<Accordion title="--pre-commit-hook">
```bash
infisical scan install --pre-commit-hook
```
**Description**
Installs a git pre-commit hook that triggers Infisical to scan your staged changes for any exposed secrets prior to pushing.
</Accordion>

24
docs/cli/scanning-overview.mdx
View File

@@ -52,6 +52,30 @@ In addition to scanning for past leaks, this new addition also actively aids in
</Tab>
</Tabs>
#
#
# Automatically scan changes before you commit
To lower the risk of committing hardcoded secrets to your code repository, we have designed a custom git pre-commit hook.
This hook scans the changes you're about to commit for any exposed secrets. If any hardcoded secrets are detected, it will block your commit.
### Install pre-commit hook
To install this git hook, go into your local git repository and run the following command.
```bash
infisical scan install --pre-commit-hook
```
To disable this hook after installing it, run the command `git config --bool hooks.infisical-scan false`
### Third party hooks management
If you prefer to manage your pre-commit hook outside of the .git/hooks directory, you can easily accomplish this by adding the following command to your pre-commit script
```bash
infisical scan git-changes --staged --verbose
```
#
#
# Creating a baseline

3
docs/mint.json
View File

@@ -154,7 +154,8 @@
"group": "infisical scan",
"pages": [
"cli/commands/scan",
"cli/commands/scan-git-changes"
"cli/commands/scan-git-changes",
"cli/commands/scan-install"
]
}
]