# .gitleaksignore
# These are DELIBERATE TEST FIXTURES used by SEC-01 and SEC-02 tests.
# They prove the log sanitizer and DB scanner correctly redact
# credential-format patterns. Removing them would break the security
# invariant tests. None are real credentials.
# Verified clean: 2026-04-16
# Reviewed by: repo owner

# SEC-02 log sanitizer test — sk- prefix redaction
7377775cca3edf7d084bd29769056de6d703a466:tests/qa/test_security_invariants.py:generic-api-key:88

# SEC-01 DB scanner test — sk-live-* redaction
a37c44be63bbd58728d478fcc73383996edb57ff:tests/security/test_no_creds_in_db.py:generic-api-key:30

# SEC-02 log sanitizer — Slack xoxb- token redaction
f05a6e3cc2a9dcc87843ba82ff9085e3e7edb938:tests/security/test_no_creds_in_logs.py:generic-api-key:72

# SEC-02 log sanitizer — OpenAI sk-proj-* redaction
f05a6e3cc2a9dcc87843ba82ff9085e3e7edb938:tests/security/test_no_creds_in_logs.py:generic-api-key:83

# SEC-02 log sanitizer — generic key redaction
f05a6e3cc2a9dcc87843ba82ff9085e3e7edb938:tests/security/test_no_creds_in_logs.py:generic-api-key:109

# SEC-02 log sanitizer — GitHub ghp_ PAT redaction
f05a6e3cc2a9dcc87843ba82ff9085e3e7edb938:tests/security/test_no_creds_in_logs.py:github-pat:51
