From 7d3cb3ed62ac957be72dd3845d19608638903425 Mon Sep 17 00:00:00 2001
From: Anthony Brown <anthony.brown8@nhs.net>
Date: Fri, 17 Apr 2026 10:47:54 +0000
Subject: [PATCH] add gitleaks

---
 .gitallowed             | 13 -------------
 .pre-commit-config.yaml |  8 ++++----
 2 files changed, 4 insertions(+), 17 deletions(-)
 delete mode 100644 .gitallowed

diff --git a/.gitallowed b/.gitallowed
deleted file mode 100644
index f4ea599..0000000
--- a/.gitallowed
+++ /dev/null
@@ -1,13 +0,0 @@
-token: ?"?\$\{\{\s*secrets\.GITHUB_TOKEN\s*\}\}"?
-github-token: ?"?\$\{\{\s*secrets\.GITHUB_TOKEN\s*\}\}"?
-token: ?"?\$\{\{\s*secrets\.DEPENDABOT_TOKEN\s*\}\}"?
-id-token: write
-id-token: "write"
---token=\$\{\{\s*steps\.generate-token\.outputs\.token\s*\}\}
---token=\$GITHUB-TOKEN
---token="\$GITHUB-TOKEN"
-"accountId": "123456789012"
-accountId: "123456789012"
-"AWSAccountId": "123456789012"
-poetry.lock
-\.gitallowed
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index f205a34..5af0343 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -65,13 +65,13 @@ repos:
         pass_filenames: false
 
 
-      - id: git-secrets
-        name: Git Secrets
-        description: git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories.
+      - id: gitleaks
+        name: Git Leaks
+        description: gitleaks scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories.
         entry: bash
         args:
           - -c
-          - 'git-secrets --pre_commit_hook'
+          - "gitleaks git --pre-commit --redact --staged --verbose"
         language: system
 
 fail_fast: true