{"id":38890444,"url":"https://github.com/conmob-devsecops/hooked-ruleset-tsi","last_synced_at":"2026-01-17T14:51:34.201Z","repository":{"id":314282501,"uuid":"1053258135","full_name":"conmob-devsecops/hooked-ruleset-tsi","owner":"conmob-devsecops","description":"TSI specific rule-set for hooked","archived":false,"fork":false,"pushed_at":"2025-11-12T14:41:30.000Z","size":21,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-11-12T16:22:23.842Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/conmob-devsecops.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-09-09T07:48:32.000Z","updated_at":"2025-11-12T14:41:34.000Z","dependencies_parsed_at":null,"dependency_job_id":"4b370533-62c1-4acd-8028-41e13526fa64","html_url":"https://github.com/conmob-devsecops/hooked-ruleset-tsi","commit_stats":null,"previous_names":["conmob-devsecops/hooked-ruleset-tsi"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/conmob-devsecops/hooked-ruleset-tsi","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/conmob-devsecops%2Fhooked-ruleset-tsi","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/conmob-devsecops%2Fhooked-ruleset-tsi/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/conmob-devsecops%2Fhooked-ruleset-tsi/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/conmob-devsecops%2Fhooked-ruleset-tsi/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/conmob-devsecops","download_url":"https://codeload.github.com/conmob-devsecops/hooked-ruleset-tsi/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/conmob-devsecops%2Fhooked-ruleset-tsi/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28510917,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-17T13:38:16.342Z","status":"ssl_error","status_checked_at":"2026-01-17T13:37:44.060Z","response_time":85,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-01-17T14:51:33.706Z","updated_at":"2026-01-17T14:51:34.194Z","avatar_url":"https://github.com/conmob-devsecops.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Hooked Rules for TSI\n\nThis rule-set for [hooked](https://github.com/conmob-devsecops/hooked)\ncontains a curated set of hooks specifically for TSI.\n\n## 📦 Installation\n\n```bash\nhooked install https://github.com/conmob-devsecops/hooked-ruleset-tsi.git\n```\n\n⚠️ Beside `hooked` you need to have [Gitleaks](https://github.com/gitleaks/gitleaks)\ninstalled and available in your PATH for this rule-set to work. Pre-build binaries\nof gitleaks are available on the [releases page](https://github.com/gitleaks/gitleaks/releases).\n\n## Usage\n\nThis rule-set contains an opinionated gitleaks configuration, that may affect\nyour ability to commit. Therefore,\n\n### ✅ Allowed\n\nSecrets in the following folders and files are allowed. Here you can place contributions\nwithout risking false positives from gitleaks scans.\n\n- `docs/*`\n- `contrib/*`\n- `examples/*`, `tests/*`, `fixtures/*`, `samples/*`\n- `README.md`\n\n### ⛔️ Denied\n\n- Common files in software development, that contain secrets (e.g., `.env`, `.env.local`)\n- Files, that should never be part of a commit (e.g., `.DS_Store`, `Thumbs.db`)\n- Employee ID (so called \"A-Kennung\")\n- Commit author email addresses other than `t-systems.com` or `telekom.de`\n  (including externals)\n- **Secrets!** 🔥\n\n### 📌 False Positive Handling\n\nFalse positives might occur when gitleaks erroneously detects a secret as a\npotential leak. To ignore a false positive using inline comments, follow these\nsteps:\n\n- Identify the specific line of code that is generating the false positive.\n- Place an inline comment on the same line as the false positive. The comment\n  must start with `gitleaks:allow`\n- Add a reason for the ignore, for example, `gitleaks:allow: this is a test\nsecret`\n- Commit the changes and push them to the repository.\n- Gitleaks will now ignore the false positive and not flag it as a potential\n  leak.\n\n## Available Hooks\n\n| Hook                         | Description                                                 |\n| ---------------------------- | ----------------------------------------------------------- |\n| `gitleaks-staged`            | Runs local gitleaks on staged changes                       |\n| `check-git-user-email`       | Disallows git author emails other than from allowed domains |\n| `check-prohibited-filenames` | Disallow certain filenames, similar to .gitignore patterns. |\n\n## Issues\n\nIf you face any issues when using this rule-set in your daily job, we'd like to\nhear from! You may start an issue in this repository or write us an email at\n[devsecops@t-systems.com](mailto:devsecops@t-systems.com).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fconmob-devsecops%2Fhooked-ruleset-tsi","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fconmob-devsecops%2Fhooked-ruleset-tsi","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fconmob-devsecops%2Fhooked-ruleset-tsi/lists"}