Skip to content

Fix gitleaks false positive by removing screenshot from README #1098

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Copilot wants to merge 4 commits into from
Closed

Fix gitleaks false positive by removing screenshot from README #1098

Copilot wants to merge 4 commits into from

Conversation

Copy link
Contributor

Copilot AI commented Dec 16, 2025
edited
Loading

This PR addresses the gitleaks false positive detection by removing the screenshot from README.md that contained a GitHub asset URL flagged as an AWS access token.

Changes

  • Removed .gitleaksignore file (per maintainer request)
  • Removed screenshot image from README.md (line 43) containing the GitHub asset URL a37837b0-b61e-4ce7-b23c-fd8661585e40

The screenshot that was causing the gitleaks false positive has been removed. The maintainer will upload the screenshot again later.

Original prompt

X Linted [REPOSITORY] files with [gitleaks]: Found 2 error(s) and 0 warning(s) - (0.77s) (expand for details)

  • Using [gitleaks v8.30.0] https://megalinter.io/9.2.0/descriptors/repository_gitleaks

  • MegaLinter key: [REPOSITORY_GITLEAKS]

  • Rules config: [.gitleaks.toml]

  • Command: [gitleaks detect --redact -c /action/lib/.automation/.gitleaks.toml --verbose --source .]
    --Error detail:


    │╲
    │ ○
    ○ ░
    ░ gitleaks

Finding: REDACTED
Secret: REDACTED
RuleID: aws-access-token
Entropy: 3.821928
Tags: [decoded:base64 decode-depth:1]
File: README.md
Line: 41
Commit: HIDDEN_BY_MEGALINTERAuthor: KnifMelti
Email: [email protected]
Date: 2025-03-15T10:39:22Z
Fingerprint: 291d8bc:README.md:aws-access-token:41
Link:

Winget-AutoUpdate/README.md

Line 41 in 291d8bc

![image](https://private-user-images.githubusercontent.com/96626929/423074783-a37837b0-b61e-4ce7-b23c-fd8661585e40.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Gs1Hg3n3qNwwgRlPSWWNDi5yJbZwlG0yMdBNTx3_U1o)

Finding: REDACTED
Secret: REDACTED
RuleID: aws-access-token
Entropy: 3.821928
Tags: [decoded:percent decoded:base64 decode-depth:2]
File: README.md
Line: 41
Commit: HIDDEN_BY_MEGALINTERAuthor: KnifMelti
Email: [email protected]
Date: 2025-03-15T10:39:22Z
Fingerprint: 291d8bc:README.md:aws-access-token:41
Link:

Winget-AutoUpdate/README.md

Line 41 in 291d8bc

![image](https://private-user-images.githubusercontent.com/96626929/423074783-a37837b0-b61e-4ce7-b23c-fd8661585e40.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3NDIwMzUyNTYsIm5iZiI6MTc0MjAzNDk1NiwicGF0aCI6Ii85NjYyNjkyOS80MjMwNzQ3ODMtYTM3ODM3YjAtYjYxZS00Y2U3LWIyM2MtZmQ4NjYxNTg1ZTQwLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNTAzMTUlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjUwMzE1VDEwMzU1NlomWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTNiNTBjYTg3YTZhYTY3MDZiOTAwMmVhYmY0NzRlMWJkYjdjNjhhMmU3OGZkZDMxMmNlOTUzMTBlNWU5ZDg0NGMmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0In0.Gs1Hg3n3qNwwgRlPSWWNDi5yJbZwlG0yMdBNTx3_U1o)

12:15PM INF 1483 commits scanned.
12:15PM INF scanned ~1747836 bytes (1.75 MB) in 718ms
12:15PM WRN leaks found: 2

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

@Romanitho Romanitho changed the base branch from main to develop December 16, 2025 12:59
Copilot AI changed the title [WIP] Fix gitleaks detected errors in repository Suppress gitleaks false positive for GitHub asset URL Dec 16, 2025
Copilot AI requested a review from Romanitho December 16, 2025 13:03
@Romanitho
Copy link
Owner

Romanitho commented Dec 16, 2025

@copilot What about removing the file? I'll import it back later

Copy link
Contributor Author

Copilot AI commented Dec 16, 2025

@copilot What about removing the file? I'll import it back later

Done! Removed the .gitleaksignore file in commit e067b51.

Copilot AI changed the title Suppress gitleaks false positive for GitHub asset URL Revert gitleaks suppression changes Dec 16, 2025
@Romanitho
Copy link
Owner

Romanitho commented Dec 16, 2025

@copilot Wed can remove the screenshot that makes the false positive. I'll upload it later

Copy link
Contributor Author

Copilot AI commented Dec 16, 2025

@copilot Wed can remove the screenshot that makes the false positive. I'll upload it later

Done! Removed the screenshot from README.md in commit 3083e53.

Copilot AI changed the title Revert gitleaks suppression changes Fix gitleaks false positive by removing screenshot from README Dec 16, 2025
@Romanitho Romanitho closed this Dec 17, 2025
@Romanitho Romanitho deleted the copilot/fix-gitleaks-errors branch December 17, 2025 02:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Romanitho Romanitho Awaiting requested review from Romanitho

Assignees

@Romanitho Romanitho

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Romanitho