fledge-plugin-gitleaks

A thin fledge wrapper around gitleaks — pretty-printed scans + a one-command pre-commit hook installer.

A plugin for fledge.

Looking for a self-contained Kotlin scanner with built-in pattern catalog and entropy detection? See CorvidLabs/fledge-plugin-secrets. This plugin is the gitleaks-backed alternative — pick whichever fits your stack.

Prerequisites

• fledge installed and available in your PATH
• gitleaks installed:

brew install gitleaks               # macOS
sudo apt-get install gitleaks       # Debian/Ubuntu (if available)
# or grab a binary: https://github.com/gitleaks/gitleaks/releases

Install

fledge plugins install CorvidLabs/fledge-plugin-gitleaks

Usage

fledge gitleaks scan               # scan working tree, pretty-print findings
fledge gitleaks scan --staged      # scan only staged changes (fast, pre-commit)
fledge gitleaks check              # exits non-zero if any findings (CI mode)
fledge gitleaks install-hook       # install a pre-commit hook calling `check --staged`
fledge gitleaks uninstall-hook     # remove the pre-commit hook

CI Integration

Use fledge gitleaks check in your CI pipeline. It exits non-zero when secrets are detected:

- run: fledge gitleaks check

Configuration

The plugin honors any .gitleaks.toml you have in the repo. To allowlist false positives, edit that file (see gitleaks docs).

Development

cargo build --release
cargo test
cargo clippy -- -D warnings
cargo fmt --check

The built binary lives at target/release/fledge-gitleaks.

License

MIT