在 .gitlab-ci.yml 中配置 Secret 检测，如果该文件不存在则创建此文件

.gitlab-ci.yml

@@ -5,39 +5,36 @@
 # Container Scanning customization: https://docs.gitlab.com/ee/user/application_security/container_scanning/#customizing-the-container-scanning-settings
 # Note that environment variables can be set in several places
 # See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
-
 variables:
-  CI_DEBUG_TRACE: "true"
-
+  CI_DEBUG_TRACE: 'true'
 stages:
-  - release
-  - test
-  - deploy
+- release
+- test
+- deploy
 pages:
   image: node:18.17.1
   before_script:
-    - corepack enable
-    - corepack prepare pnpm@latest-8 --activate
-    - pnpm config set store-dir .pnpm-store
+  - corepack enable
+  - corepack prepare pnpm@latest-8 --activate
+  - pnpm config set store-dir .pnpm-store
   script:
-    - pnpm install
-    - pnpm build
-    - mv dist public
+  - pnpm install
+  - pnpm build
+  - mv dist public
   cache:
     key:
       files:
-        - pnpm-lock.yaml
+      - pnpm-lock.yaml
     paths:
-      - ".pnpm-store"
+    - ".pnpm-store"
   artifacts:
     paths:
-      - public
+    - public
   rules:
-    - if: "$CI_COMMIT_REF_NAME == $CI_DEFAULT_BRANCH"
-
+  - if: "$CI_COMMIT_REF_NAME == $CI_DEFAULT_BRANCH"
 sast:
   stage: test
-
 include:
-  - template: Security/Dependency-Scanning.gitlab-ci.yml
-  - template: Security/SAST.gitlab-ci.yml
+- template: Security/Dependency-Scanning.gitlab-ci.yml
+- template: Security/SAST.gitlab-ci.yml
+- template: Security/Secret-Detection.gitlab-ci.yml