From 58eb0fa095ff0a30de22be45e70fe6d67d9e6c7d Mon Sep 17 00:00:00 2001 From: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com> Date: Mon, 29 Jun 2026 12:45:52 +0100 Subject: [PATCH] ci: allow Formbucket egress in secrets scan (#11718) --- .github/workflows/find-secrets.yml | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/.github/workflows/find-secrets.yml b/.github/workflows/find-secrets.yml index 6f8b47d17e..ac3efaaa69 100644 --- a/.github/workflows/find-secrets.yml +++ b/.github/workflows/find-secrets.yml @@ -29,10 +29,11 @@ jobs: with: # We can't block as Trufflehog needs to verify secrets against vendors egress-policy: audit - # allowed-endpoints: > - # github.com:443 - # ghcr.io:443 - # pkg-containers.githubusercontent.com:443 + allowed-endpoints: > + github.com:443 + ghcr.io:443 + pkg-containers.githubusercontent.com:443 + www.formbucket.com:443 - name: Checkout repository uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2