Scan file secrets with Gitleaks
Run a local Gitleaks secret scan against one trusted source path or file ref and preserve the redacted JSON report. The scan goes through the recued-core.gitleaks fixed CLI operation: no shell, no arbitrary flags, no remote access, no custom config path, and detected secrets are redacted in the captured report.
How it works
Inspect the data fetches, transforms, gates, and output this recipe runs.
Process (3 steps)
scan
?
keep
?
card
to_summary
Format results as a summary card
Settings
Configurable at install. Defaults shown — change them anytime in Recued.
source
setting
=
Trust & control
What installing this recipe would let it do. Recued grants these permissions at install — review them there before approving.