From 30172ed7d9b7175b107dee6c4d75373151dc0cab Mon Sep 17 00:00:00 2001
From: rajneeshksaini <rajneesh.saini@typeform.com>
Date: Wed, 16 Jun 2021 14:18:06 -0700
Subject: [PATCH] PI-487: add secret scanning

---
 .github/workflows/secrets-scans.yml | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 .github/workflows/secrets-scans.yml

diff --git a/.github/workflows/secrets-scans.yml b/.github/workflows/secrets-scans.yml
new file mode 100644
index 0000000..62945bb
--- /dev/null
+++ b/.github/workflows/secrets-scans.yml
@@ -0,0 +1,24 @@
+name: Secrets Scan
+
+on: [push, pull_request]
+
+jobs:
+    secrets-scan:
+        # for private repositories
+        # runs-on: [self-hosted, automated-checks]
+        # for public repositories
+        runs-on: [ubuntu-latest]
+
+        steps:
+            - name: Check Out Source Code
+              uses: actions/checkout@v2
+              with:
+                  fetch-depth: 0
+
+            - name: Secrets Scan
+              uses: Typeform/.github/shared-actions/secrets-scan@master
+              with:
+                  docker-registry: ${{ secrets.DOCKER_REGISTRY }}
+                  docker-username: ${{ secrets.DOCKER_USERNAME }}
+                  docker-password: ${{ secrets.DOCKER_PASSWORD }}
+                  gh-token: ${{ secrets.GH_TOKEN }}