name: Validate K8s manifests
run-name: ${{ gitea.actor }} is validating K8s manifests
on: [push]

jobs:
  validate-manifests:
    runs-on: ubuntu-latest
    steps:
      - name: 📥Checkout
        uses: actions/checkout@v3
      - name: 🚀Validating the manifests
        uses: frenck/action-yamllint@v1.5.0
        with:
          config: ".yamllint"
          path: "manifests/"
          warnings: false
  scan-secrets:
    runs-on: ubuntu-latest
    steps:
      - name: 📥Checkout
        uses: actions/checkout@v3
      - name: 🤐Secret Scanning
        uses: onboardbase/securelog-scan@main
        with:
          mask: "true" # that is mask secret value e.g sk_******
          verify: "true" # that is verify potential secrets against their service provider