95d65a1155
Extracted 52 files from Timmy_Foundation/hermes-agent (gitea/main) into hermes-sovereign/ directory to restore clean upstream tracking. Layout: docs/ 19 files — deploy guides, performance reports, security docs, research security/ 5 files — audit workflows, PR checklists, validation scripts wizard-bootstrap/ 7 files — wizard environment, dependency checking, auditing notebooks/ 2 files — Jupyter health monitoring notebooks scripts/ 5 files — forge health, smoke tests, syntax guard, deploy validation ci/ 2 files — Gitea CI workflow definitions githooks/ 3 files — pre-commit hooks and config devkit/ 8 files — developer toolkit (Gitea client, health, notebook runner) README.md 1 file — directory overview Addresses: #337, #338
26 lines
737 B
YAML
26 lines
737 B
YAML
repos:
|
|
# Secret detection
|
|
- repo: https://github.com/gitleaks/gitleaks
|
|
rev: v8.21.2
|
|
hooks:
|
|
- id: gitleaks
|
|
name: Detect secrets with gitleaks
|
|
description: Detect hardcoded secrets, API keys, and credentials
|
|
|
|
# Basic security hygiene
|
|
- repo: https://github.com/pre-commit/pre-commit-hooks
|
|
rev: v5.0.0
|
|
hooks:
|
|
- id: check-added-large-files
|
|
args: ['--maxkb=500']
|
|
- id: detect-private-key
|
|
name: Detect private keys
|
|
- id: check-merge-conflict
|
|
- id: check-yaml
|
|
- id: check-toml
|
|
- id: end-of-file-fixer
|
|
- id: trailing-whitespace
|
|
args: ['--markdown-linebreak-ext=md']
|
|
- id: no-commit-to-branch
|
|
args: ['--branch', 'main']
|