feat(security): security.yml + GitHub mirror + SSH origin
All checks were successful
security / security (push) Successful in 8s

- security.yml: Hadolint + GitLeaks (для Next.js sag24 — также Semgrep + npm audit)

- origin URL: HTTPS+PAT → SSH (убран plain-text token из git config)

- all remote: dual-push в Gitea + GitHub

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Dmitry Gusev
2026-05-24 23:35:14 +03:00
parent 233af27773
commit 365ec4deec
2 changed files with 40 additions and 0 deletions

5
.gitleaks.toml Normal file
View File

@@ -0,0 +1,5 @@
# GitLeaks config для redirect-контейнеров.
# Минимальный — только default rules, без специальных allowlist.
[extend]
useDefault = true