Skip to main content

Secrets Detection built-in scanner step reference

You can use this step to add a built-in Gitleaks step to detect passwords and other secrets in your code repositories. Built-in steps enable you to add scans quickly and with minimal configuration. These steps use scanners that are free to STO users and are ready to run as soon as you add them to your pipeline.

Important notes

  • Currently Gitleaks scans are available for this step.

  • The step detects your target and variant automatically.

  • All other settings such as Log level and Fail on Severity are set to their defaults.

  • You can configure the Gitleaks step after you add it to your pipeline, but this is optional.