gitleaks
Gitleaks Summary Generated Urls Broken
Heyo!
The gitleaks summary is generating urls that are broken for all my private Org repos for all workflow event types.
The Url generated for example is https://github.com/<Org>/
If I take out the "actions/runs/undefined" part of the url it seems to at least land on the commit page.
Any ideas whats happening here?
It seems odd because the url seems like it should be created based off eventJSON.repository.html_url and when I view that in the pipeline it looks correct without the actions/runs/undefined bit added.
The URL is taken from https://github.com/gitleaks/gitleaks-action/blob/dea2b736fc4e90483f46e5bcbf998590c5742789/src/summary.js#L9
But unfortunately it's overwritten if the workflow is scheduled with a cron (i.e. event type schedule)
https://github.com/gitleaks/gitleaks-action/blob/dea2b736fc4e90483f46e5bcbf998590c5742789/src/index.js#L51-L59
I have tested privately that the JSON file read into eventJSON contains repository.html_url, so IMO that if branch is obsolete and can be removed. Unfortunately I'm unable to find documentation to back this up...
