chore(deps): bump zricethezav/gitleaks-action from 1.6.0 to 2.0.4

[dependabot]

Bumps zricethezav/gitleaks-action from 1.6.0 to 2.0.4.

Release notes

Sourced from zricethezav/gitleaks-action's releases.

v2.0.4

What's New

• Ensure there are commits available to scan on push events gitleaks/gitleaks-action#67

v2.0.3

What's New

• Use eventJson.commits for commit range rather than eventJson.before and eventJson.after. This fixes invalid revision range on push event errors.

v2.0.2

What's New

• Fixed action.yml name so this action can be published on the marketplace

v2.0.1

What's New

• Individual user accounts do not need to obtain a license key. 🎉
• Added GITLEAKS_ENABLE_SUMMARY env var option to enable or disable Gitleaks-action job summaries (defaults to true)
• Added GITLEAKS_ENABLE_UPLOAD_ARTIFACT env var option to enable or disable Gitleaks-action job artifact uploads (defaults to true)

v2.0.0

What's Changed

Gitleaks-Action Version 2 brings a range of new features including:

1. On demand scans

You can now use workflow_dispatch events to trigger on demand gitleaks scans.

2. Gitleaks report artifact uploads

Not much more to say here. Download reports when leaks are present. Pretty useful feature.

3. Powered by the latest version of Gitleaks

The latest version of gitleaks (v8.8.6 at the time of writing) has better performance, more configuration options, and is more accurate than the previous major version.

4. Job summaries

Easy to understand report of a Gitleaks job. If no leaks are detected you'll see:

If leaks are detected you'll see something like:

5. Faster job times

Gitleaks-Action Version 2 does not rely on Docker build anymore.

6. Pull Request Comments

... (truncated)

Commits

• 1371ffc Merge pull request #67 from gitleaks/check-commit-length-on-push
• bb19f49 add push to gitleaks-action-HEAD
• 894eb33 fix-up dist
• 2ed4f2a check commit length on push
• ccabb85 Merge pull request #65 from gitleaks/simplify-head-and-base-logic
• 1726257 Use eventJson.commits for commit range rather than before and after
• 4be9103 Merge pull request #60 from gitleaks/feature/why-are-jobs-failing
• 4e46385 Merge branch 'master' into feature/why-are-jobs-failing
• 773dfe5 Merge pull request #64 from gitleaks/v2-default
• dfb1bc6 Merge branch 'master' into v2-default
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coveralls]

Pull Request Test Coverage Report for Build 2609077986

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 0.0%

---

Totals
Change from base Build 2589785806:	0.0%
Covered Lines:	0
Relevant Lines:	0

---

💛 - Coveralls