striker 5689940853
Some checks failed
deploy / deploy (push) Has been cancelled
security / security (push) Has been cancelled
feat(security): Hadolint + GitLeaks + Semgrep workflow (Layer C)
Новый workflow .gitea/workflows/security.yml — параллельно с deploy.yml,
запускается на push в main + на PR. Все три инструмента warning-only:

- Hadolint: bad practices в Dockerfile
- GitLeaks: поиск секретов в истории (полный clone fetch-depth: 0)
- Semgrep: SAST с конфигами p/javascript + p/react + p/typescript + p/security-audit

Не блокируют deploy — findings собираются в логи job'а.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-05-24 16:51:04 +03:00
2026-05-21 03:21:45 +03:00
Description
������� ������ ������� � Vite+React (v2 ��������)
1.8 MiB
Languages
Astro 45.4%
JavaScript 24%
TypeScript 14.7%
Python 8.7%
CSS 4.5%
Other 2.7%