fix: exclude test redaction files from credential scanner

Prevents false positives in security audit by excluding test files that contain intentional fake credentials for testing logger redaction functionality. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-05-26 22:41:14 -05:00
parent d1a3917eb0
commit 0e4d22bcdc
1 changed files with 1 additions and 1 deletions
--- a/scripts/security/credential-audit.sh
+++ b/scripts/security/credential-audit.sh
@@ -51,7 +51,7 @@ CREDENTIAL_PATTERNS=(
 )

 for pattern in "${CREDENTIAL_PATTERNS[@]}"; do
-    if grep -rE "$pattern" --exclude-dir=node_modules --exclude-dir=.git --exclude-dir=coverage --exclude="credential-audit.sh" . 2>/dev/null; then
+    if grep -rE "$pattern" --exclude-dir=node_modules --exclude-dir=.git --exclude-dir=coverage --exclude="credential-audit.sh" --exclude="test-logger-redaction.js" --exclude="test-logger-redaction-comprehensive.js" . 2>/dev/null; then
        report_issue "Found potential hardcoded credentials matching pattern: $pattern"
    fi
 done