From 63ba97306c90e4d5128d271f24b4f82d66077633 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 23 Jan 2024 13:05:58 -0500
Subject: [PATCH 1/3] Exclude Strelka defaults

---
 .github/.gitleaks.toml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/.gitleaks.toml b/.github/.gitleaks.toml
index 024b8ce511..cbf54d77c4 100644
--- a/.github/.gitleaks.toml
+++ b/.github/.gitleaks.toml
@@ -541,6 +541,6 @@ paths = [
     '''gitleaks.toml''',
     '''(.*?)(jpg|gif|doc|pdf|bin|svg|socket)$''',
     '''(go.mod|go.sum)$''',
-    
-    '''salt/nginx/files/enterprise-attack.json'''
+    '''salt/nginx/files/enterprise-attack.json''',
+    '''salt/strelka/defaults.yaml'''
 ]

From 0ccdfcb07cffa3efacaa0384a9993ad533ba322a Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 23 Jan 2024 13:11:43 -0500
Subject: [PATCH 2/3] Exclude only offset_meta_key

---
 .github/.gitleaks.toml | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/.github/.gitleaks.toml b/.github/.gitleaks.toml
index cbf54d77c4..e2cb0036f6 100644
--- a/.github/.gitleaks.toml
+++ b/.github/.gitleaks.toml
@@ -536,11 +536,10 @@ secretGroup = 4
 
 [allowlist]
 description = "global allow lists"
-regexes = ['''219-09-9999''', '''078-05-1120''', '''(9[0-9]{2}|666)-\d{2}-\d{4}''', '''RPM-GPG-KEY.*''']
+regexes = ['''219-09-9999''', '''078-05-1120''', '''(9[0-9]{2}|666)-\d{2}-\d{4}''', '''RPM-GPG-KEY.*''', '''offset_meta_key''']
 paths = [
     '''gitleaks.toml''',
     '''(.*?)(jpg|gif|doc|pdf|bin|svg|socket)$''',
     '''(go.mod|go.sum)$''',
-    '''salt/nginx/files/enterprise-attack.json''',
-    '''salt/strelka/defaults.yaml'''
+    '''salt/nginx/files/enterprise-attack.json'''
 ]

From 0cb36bb0aa8c3d1c9300ef3562a6eaef4bc0801e Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 23 Jan 2024 13:39:59 -0500
Subject: [PATCH 3/3] Exclude StrelkaHexDump and PLACEHOLDER values

---
 .github/.gitleaks.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/.gitleaks.toml b/.github/.gitleaks.toml
index e2cb0036f6..cec03cc5c3 100644
--- a/.github/.gitleaks.toml
+++ b/.github/.gitleaks.toml
@@ -536,7 +536,7 @@ secretGroup = 4
 
 [allowlist]
 description = "global allow lists"
-regexes = ['''219-09-9999''', '''078-05-1120''', '''(9[0-9]{2}|666)-\d{2}-\d{4}''', '''RPM-GPG-KEY.*''', '''offset_meta_key''']
+regexes = ['''219-09-9999''', '''078-05-1120''', '''(9[0-9]{2}|666)-\d{2}-\d{4}''', '''RPM-GPG-KEY.*''', '''.*:.*StrelkaHexDump.*''', '''.*:.*PLACEHOLDER.*''']
 paths = [
     '''gitleaks.toml''',
     '''(.*?)(jpg|gif|doc|pdf|bin|svg|socket)$''',