Currently the secret scanning never authenticates itself inside the git hook to a devguard instance. We should change that.
I think we should:
- Store org, project and asset in vscode settings so that one can commit the configured devguard connection
- Add the devguard token to the vscode secret store (already done) AND to the keyring of the os device (devguard-scanner auth)
- Use the --print-token flag of the auth command (I just added it) to retrieve the token in the git pre-commit hook and forward it to docker
docker run --rm -e DEVGUARD_TOKEN="$(devguard-scanner auth --print-token --assetName org/project/asset --apiUrl https://api.devguard.org)" devguard-scanner secret-scanning --token=$DEVGUARD_TOKEN...
Currently the secret scanning never authenticates itself inside the git hook to a devguard instance. We should change that.
I think we should: