CI: restore main detect-secrets scan (#38438)

* Tests: stabilize detect-secrets fixtures * Tests: fix rebased detect-secrets false positives * Docs: keep snippets valid under detect-secrets * Tests: finalize detect-secrets false-positive fixes * Tests: reduce detect-secrets false positives * Tests: keep detect-secrets pragmas inline * Tests: remediate next detect-secrets batch * Tests: tighten detect-secrets allowlists * Tests: stabilize detect-secrets formatter drift
2026-05-09 02:48:27 +00:00 · 2026-03-07 13:06:35 -05:00
parent 46e324e269
commit e4d80ed556
137 changed files with 1231 additions and 2700 deletions
--- a/extensions/msteams/src/monitor.lifecycle.test.ts
+++ b/extensions/msteams/src/monitor.lifecycle.test.ts
@@ -140,7 +140,7 @@ function createConfig(port: number): OpenClawConfig {
      msteams: {
        enabled: true,
        appId: "app-id",
-        appPassword: "app-password",
+        appPassword: "app-password", // pragma: allowlist secret
        tenantId: "tenant-id",
        webhook: {
          port,
--- a/extensions/msteams/src/token.test.ts
+++ b/extensions/msteams/src/token.test.ts
@@ -35,7 +35,7 @@ describe("resolveMSTeamsCredentials", () => {

    expect(resolved).toEqual({
      appId: "app-id",
-      appPassword: "app-password",
+      appPassword: "app-password", // pragma: allowlist secret
      tenantId: "tenant-id",
    });
  });