Drone CI
Prelude
GitGuardian CI/CD integration with Drone CI is performed through our CLI application: ggshield.
ggshield is a wrapper around the GitGuardian API for secrets detection, an API key is required for authentication.
Preview
Installation
Service accounts are recommended to run this integration.
Please note that service accounts are only available for workspaces under our Business plan, and their administration is restricted to Managers. If your workspace is under the Free plan, you can still use a personal access token to run this integration.
- Create a service account from the API section of your GitGuardian workspace (or a personal access token if you are on the Free plan).
- Add this API key to the
GITGUARDIAN_API_KEYenvironment variable in your project settings. It should be available for Drone CI runners. - In order to add ggshield to your pipelines, configure your
.drone.ymlto add a ggshield scanning step.
kind: pipeline
type: docker
name: default
steps:
- name: ggshield
image: gitguardian/ggshield:latest
commands:
- ggshield secret scan ci
Was this page helpful?
