mirror of
https://github.com/getnora-io/nora.git
synced 2026-04-12 17:20:33 +00:00
31 lines
780 B
TOML
31 lines
780 B
TOML
# Gitleaks configuration
|
|
# https://github.com/gitleaks/gitleaks
|
|
|
|
title = "NORA gitleaks rules"
|
|
|
|
# Internal infrastructure — private IPs and domains
|
|
[[rules]]
|
|
id = "private-network"
|
|
description = "Private network addresses and internal domains"
|
|
regex = '''(10\.25\.1\.\d+|10\.0\.\d+\.\d+|192\.168\.\d+\.\d+)'''
|
|
tags = ["network"]
|
|
|
|
[[rules]]
|
|
id = "internal-domains"
|
|
description = "Internal domain names"
|
|
regex = '''[a-z0-9]+\.(lab|internal|local|corp)\b'''
|
|
tags = ["network"]
|
|
|
|
[[rules]]
|
|
id = "tailscale-hostnames"
|
|
description = "Tailscale MagicDNS hostnames"
|
|
regex = '''[a-z0-9]+\.tail[a-z0-9]+\.ts\.net'''
|
|
tags = ["network"]
|
|
|
|
[allowlist]
|
|
description = "Allowlist for false positives"
|
|
paths = [
|
|
'''\.gitleaks\.toml$''',
|
|
'''\.gitignore$''',
|
|
]
|