From c841b3fbfa589875409b74b2b3ce94ce117000b9 Mon Sep 17 00:00:00 2001
From: SauloCW <saulo.monteiro@cloudwalk.io>
Date: Tue, 17 Jun 2025 12:20:21 -0300
Subject: [PATCH 1/4] commit inicial

---
 .github/workflows/gitleaks.yml | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 .github/workflows/gitleaks.yml

diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
new file mode 100644
index 0000000..2820f76
--- /dev/null
+++ b/.github/workflows/gitleaks.yml
@@ -0,0 +1,31 @@
+name: Gitleaks Scan
+
+on: 
+  pull_request
+
+permissions:
+  contents: read
+  pull-requests: read
+
+jobs:
+  gitleaks:
+    name: Run Gitleaks
+    runs-on: cloudwalk-k8s-runner
+    if: ${{ github.repository != 'cloudwalk/actions' }}
+
+    steps:
+      - name: Checkout PR code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          ref: ${{ github.event.pull_request.head.ref }}
+          repository: ${{ github.event.pull_request.head.repo.full_name }}
+          token: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Run Gitleaks
+        uses: gitleaks/gitleaks-action@v2
+        env:
+          GITHUB_TOKEN: ${{ secrets.GHA_PAT }}
+          GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE_PUBLIC }}
+          GITLEAKS_ENABLE_UPLOAD_ARTIFACT: "false"
+          GITLEAKS_VERSION: 8.26.0
\ No newline at end of file

From 5b6ad62161247a2b0756493a7a88f543fafaa662 Mon Sep 17 00:00:00 2001
From: SauloCW <141950472+SauloCW@users.noreply.github.com>
Date: Tue, 17 Jun 2025 13:08:03 -0300
Subject: [PATCH 2/4] Update .github/workflows/gitleaks.yml

Co-authored-by: Gullit Miranda <144704909+gullit-cw@users.noreply.github.com>
---
 .github/workflows/gitleaks.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
index 2820f76..b98f998 100644
--- a/.github/workflows/gitleaks.yml
+++ b/.github/workflows/gitleaks.yml
@@ -1,7 +1,7 @@
 name: Gitleaks Scan
 
 on: 
-  pull_request
+  push
 
 permissions:
   contents: read

From 16fac9c436533cd5c4b34f97b66ccdf12ef69139 Mon Sep 17 00:00:00 2001
From: SauloCW <saulo.monteiro@cloudwalk.io>
Date: Tue, 17 Jun 2025 13:27:23 -0300
Subject: [PATCH 3/4] remove runner declaration

---
 .github/workflows/gitleaks.yml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
index b98f998..e2a1eae 100644
--- a/.github/workflows/gitleaks.yml
+++ b/.github/workflows/gitleaks.yml
@@ -8,11 +8,6 @@ permissions:
   pull-requests: read
 
 jobs:
-  gitleaks:
-    name: Run Gitleaks
-    runs-on: cloudwalk-k8s-runner
-    if: ${{ github.repository != 'cloudwalk/actions' }}
-
     steps:
       - name: Checkout PR code
         uses: actions/checkout@v4

From 3aa799c139cb20957834c97854ba4c29db6bce15 Mon Sep 17 00:00:00 2001
From: SauloCW <saulo.monteiro@cloudwalk.io>
Date: Tue, 17 Jun 2025 14:00:52 -0300
Subject: [PATCH 4/4] ci: define job gitleaks

---
 .github/workflows/gitleaks.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
index e2a1eae..9300c60 100644
--- a/.github/workflows/gitleaks.yml
+++ b/.github/workflows/gitleaks.yml
@@ -8,6 +8,9 @@ permissions:
   pull-requests: read
 
 jobs:
+  gitleaks:
+    name: Run Gitleaks
+    runs-on: ubuntu-24.04
     steps:
       - name: Checkout PR code
         uses: actions/checkout@v4