From 557b9b664c6486725abb62c52a27e2630befb7cb Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 5 May 2025 22:05:27 +0530
Subject: [PATCH 1/6] policy-scan.yml


From a4e8030f47ccd0fd9e95d7d466bd7f33918f6b21 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 5 May 2025 22:05:36 +0530
Subject: [PATCH 2/6] issues-jira.yml


From ddf95f893b49f57ec91b30b3661298b864af5e06 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 5 May 2025 22:05:36 +0530
Subject: [PATCH 3/6] secrets-scan.yml

---
 .github/workflows/secrets-scan.yml | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 .github/workflows/secrets-scan.yml

diff --git a/.github/workflows/secrets-scan.yml b/.github/workflows/secrets-scan.yml
new file mode 100644
index 00000000..049c02f4
--- /dev/null
+++ b/.github/workflows/secrets-scan.yml
@@ -0,0 +1,29 @@
+name: Secrets Scan
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+jobs:
+  security-secrets:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: '2'
+          ref: '${{ github.event.pull_request.head.ref }}'
+      - run: |
+          git reset --soft HEAD~1
+      - name: Install Talisman
+        run: |
+          # Download Talisman
+          wget https://github.com/thoughtworks/talisman/releases/download/v1.37.0/talisman_linux_amd64 -O talisman
+
+          # Checksum verification
+          checksum=$(sha256sum ./talisman | awk '{print $1}')
+          if [ "$checksum" != "8e0ae8bb7b160bf10c4fa1448beb04a32a35e63505b3dddff74a092bccaaa7e4" ]; then exit 1; fi  
+
+          # Make it executable
+          chmod +x talisman
+      - name: Run talisman
+        run: |
+          # Run Talisman with the pre-commit hook
+          ./talisman --githook pre-commit
\ No newline at end of file

From 09da938eda19db688087e963328d5a2a678c09d0 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 5 May 2025 22:05:41 +0530
Subject: [PATCH 4/6] Updated codeowners


From 5f4f8038054bf8674b45a43bc4fef956ec90944b Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 5 May 2025 23:33:45 +0530
Subject: [PATCH 5/6] talismanrc file updated

---
 .talismanrc | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.talismanrc b/.talismanrc
index 6d3f969f..1c2ffd0b 100644
--- a/.talismanrc
+++ b/.talismanrc
@@ -1,5 +1,8 @@
 threshold: medium
 fileignoreconfig:
+- filename: .github/workflows/secrets-scan.yml
+  ignore_detectors:
+    - filecontent
 - filename: package-lock.json
   checksum: 9d0340f9359927d477fe8ab4650642c068c592be63fb817651d866849e0dbbc2
 version: ""
\ No newline at end of file

From 5967ea3ce0b15963e650876c1dc1dc0554a60fb7 Mon Sep 17 00:00:00 2001
From: raj pandey <raj.pandey@contentstack.com>
Date: Tue, 6 May 2025 14:15:34 +0530
Subject: [PATCH 6/6] Fixed structure

---
 .talismanrc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.talismanrc b/.talismanrc
index ea70084b..41223457 100644
--- a/.talismanrc
+++ b/.talismanrc
@@ -5,5 +5,5 @@ fileignoreconfig:
 - filename: package-lock.json
   checksum: 9d0340f9359927d477fe8ab4650642c068c592be63fb817651d866849e0dbbc2
 - filename: .husky/pre-commit
-    checksum: 5baabd7d2c391648163f9371f0e5e9484f8fb90fa2284cfc378732ec3192c193
+  checksum: 5baabd7d2c391648163f9371f0e5e9484f8fb90fa2284cfc378732ec3192c193
 version: ""
\ No newline at end of file