Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can i choose which files to exclude from scanning in the git-secrets-scan pipe?

Abdelmassih Abdelmassih
Abdelmassih Abdelmassih
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 13, 2025

I can not find any documentation regarding files/folders exclusion from git-secrets-scan pipe in bitbuckets pipelines

Answer
Watch
Like Be the first to like this
283 views

2 answers

0 votes
Igor Stoyanov
Igor Stoyanov
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
January 14, 2025

Hi @Abdelmassih AbdelmassihPlease, check the docs.
You should add paths under [allowlist] section in gitleaks.toml file.
Example:

# This is a global allowlist which has a higher order of precedence than rule-specific allowlists.
# If a commit listed in the `commits` field below is encountered then that commit will be skipped and no
# secrets will be detected for said commit. The same logic applies for regexes and paths.
[allowlist]
description = "global allow list"
commits = [ "commit-A", "commit-B", "commit-C"]
paths = [
  '''gitleaks\.toml''',
  '''(.*?)(jpg|gif|doc)'''
]

Regards, Igor

Reply
0 votes
Sahir Maharaj
Sahir Maharaj
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 13, 2025

Hello @Abdelmassih Abdelmassih

Based on my experience, the git-secrets-scan pipe in Bitbucket Pipelines currently doesn’t seem to have explicit documentation or built-in options for excluding specific files or folders.

However, you can achieve this indirectly by modifying your pipeline configuration to exclude certain paths from being scanned. This could involve creating a .gitignore-like file or customizing the script that invokes the pipe to filter files.

Opening a ticket with Atlassian support at https://support.atlassian.com/contact/#/ may provide clarity or a workaround.

 

 

Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.