Skip to content

CM-41798 - Update README about pre-commit hook #260

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Nov 6, 2024
Merged

CM-41798 - Update README about pre-commit hook #260

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions .pre-commit-hooks.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,11 @@
- id: cycode
name: Cycode pre commit defender
name: Cycode Secrets pre-commit defender
language: python
language_version: python3
entry: cycode
args: [ '--no-progress-meter', 'scan', 'pre_commit' ]
args: [ '--no-progress-meter', 'scan', '--scan-type', 'secret', 'pre_commit' ]
- id: cycode-sca
name: Cycode SCA pre commit defender
name: Cycode SCA pre-commit defender
language: python
language_version: python3
entry: cycode
Expand Down
38 changes: 32 additions & 6 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -199,33 +199,59 @@ export CYCODE_CLIENT_SECRET={your Cycode Secret Key}

Cycode’s pre-commit hook can be set up within your local repository so that the Cycode CLI application will identify any issues with your code automatically before you commit it to your codebase.

> [!NOTE]
> pre-commit hook is only available to Secrets and SCA scans.

Perform the following steps to install the pre-commit hook:

1. Install the pre-commit framework:
1. Install the pre-commit framework (Python 3.8 or higher must be installed):

`pip3 install pre-commit`

2. Navigate to the top directory of the local repository you wish to scan.
2. Navigate to the top directory of the local Git repository you wish to configure.

3. Create a new YAML file named `.pre-commit-config.yaml` (include the beginning `.`) in the repository’s top directory that contains the following:

```yaml
repos:
- repo: https://github.com/cycodehq/cycode-cli
rev: v1.4.0
rev: v1.11.0
hooks:
- id: cycode
stages:
- commit
```

4. Modify the created file for your specific needs. Use hook ID `cycode` to enable scan for Secrets. Use hook ID `cycode-sca` to enable SCA scan. If you want to enable both, use this configuration:

```yaml
repos:
- repo: https://github.com/cycodehq/cycode-cli
rev: v1.11.0
hooks:
- id: cycode
stages:
- commit
- id: cycode-sca
stages:
- commit
```

4. Install Cycode’s hook:
5. Install Cycode’s hook:

`pre-commit install`

A successful hook installation will result in the message: `Pre-commit installed at .git/hooks/pre-commit`.

6. Keep the pre-commit hook up to date:

`pre-commit autoupdate`

It will automatically bump "rev" in ".pre-commit-config.yaml" to the latest available version of Cycode CLI.

> [!NOTE]
> A successful hook installation will result in the message:<br/>
`Pre-commit installed at .git/hooks/pre-commit`
> Trigger happens on `git commit` command.
> Hook triggers only on the files that are staged for commit.

# Cycode CLI Commands

Expand Down
Loading