feat(gitleaks): Setup as standalone check

GitLeaks should be a standalone check as the one in the larger linter
does not seem to work correctly with config files

Signed-off-by: Jason Field <jason@avon-lea.co.uk>

.github/linters/.markdown-lint.yml

@@ -5,3 +5,6 @@ MD004:
 # Ordered list item prefix
 MD029:
   style: one
+
+MD013:
+  line_length: 120

.github/workflows/gitleaks.yml

@@ -0,0 +1,19 @@
+name: gitleaks
+on:
+    pull_request:
+    push:
+      branches:
+        - main
+jobs:
+  scan:
+    name: gitleaks
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+      - uses: gitleaks/gitleaks-action@v2
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE}} # Only required for Organizations, not personal accounts.
+          GITLEAKS_CONFIG: "gitleaks.toml"

.github/workflows/linter.yml

@@ -2,6 +2,7 @@ name: Lint Code Base
 
 on:
   pull_request:
+  push:
     branches:
       - main
 
@@ -39,4 +40,5 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           TYPESCRIPT_DEFAULT_STYLE: prettier
           VALIDATE_JSCPD: false
+          VALIDATE_GITLEAKS: false
           VALIDATE_NATURAL_LANGUAGE: false

README.md

@@ -1,6 +1,6 @@
 # App-Token Github Action
 
-This action allows you to get the `GITHUB_TOKEN` for a given app installation to save you from using bot accounts. 
+This action allows you to get the `GITHUB_TOKEN` for a given app installation to save you from using bot accounts.
 
 ## Features
 
@@ -73,6 +73,7 @@ This section is intended for developers who want to contribute to the app-token
 
 
 ### Clone the repository
+
 ```bash
 git clone https://github.com/ActionsHub/app-token.git
 cd app-token
@@ -86,4 +87,4 @@ npm install
 
 ## License
 
-MIT License
+MIT License