While there are a few security scanner servers / Woodpecker plugins out there, I want something much more simple — I want to avoid publishing my domain name accidentally. I have a bad habit of just writing example.com (as an example — substitute that with my actual domain) here, and especially don’t want to do that to a friend’s site.
Because I’m just checking for a handful of domain names, I’m using https://woodpecker-ci.org/plugins/regex-check.
The additional step in the pipeline is:
steps:
- name: secret_check
image: codeberg.org/qwerty287/woodpecker-regex-check
settings:
pattern: "*.md"
regex: '(domain1\.com)|(domain2\.com)'
must_contain: falseThis fails the step (and therefore the whole build) if I inadvertently publish my own domain name or that of a friend.
No log output?
This step doesn’t seem to produce any output in the build step, but it does pass/fail exactly like I expected — so it works well enough.