From c786792765ed7e40ff178d6a8a2923c3108378b3 Mon Sep 17 00:00:00 2001
From: Matt Peake <7741049+peakematt@users.noreply.github.com>
Date: Wed, 25 Oct 2023 09:57:32 -0400
Subject: [PATCH] SECOPS-2268: Add Gitleaks to CI (#416)

---
 .circleci/config.yml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/.circleci/config.yml b/.circleci/config.yml
index cedb3967..3daf4579 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -4,6 +4,7 @@ version: 2.1
 orbs:
   rust: circleci/rust@1.6.0
   gh: circleci/github-cli@2.2.0
+  secops: apollo/circleci-secops-orb@2.0.1
 
 # These filters are used to determine which package to release
 any_release: &any_release
@@ -104,6 +105,16 @@ workflows:
             - "Run cargo tests (stable rust on amd_macos)"
             - "Run cargo tests (stable rust on amd_windows)"
           <<: *crate_release
+  
+  security-scans:
+    jobs:
+      - secops/gitleaks:
+          context:
+            - platform-docker-ro
+            - github-orb
+            - secops-oidc
+          git-base-revision: <<#pipeline.git.base_revision>><<pipeline.git.base_revision>><</pipeline.git.base_revision >>
+          git-revision: << pipeline.git.revision >>
 
 jobs:
   xtask: