gh-workflows

Reusable GitHub Actions workflows for the Journee organization.

Available Workflows

Secret Scan (`secret-scan.yml`)

Scans PR diffs for leaked tokens, secrets, and credentials using TruffleHog.

Usage — add this to .github/workflows/secret-scan.yml in your repo:

name: Secret Scan
on:
  pull_request:
    branches: [main]

jobs:
  trufflehog:
    uses: journee-live/gh-workflows/.github/workflows/secret-scan.yml@main

Then enforce it as a required status check via branch protection or an org-level ruleset.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

gh-workflows

Available Workflows

Secret Scan (`secret-scan.yml`)

FilesExpand file tree

README.md

Latest commit

History

README.md

File metadata and controls

gh-workflows

Available Workflows

Secret Scan (secret-scan.yml)

Secret Scan (`secret-scan.yml`)