add the config map scope to the script which check of leaks

Samuel Bartelrequested to merge
add_configmap_scope_to_leaks_check_script into main

leaks of secret have been identified in config maps (see https://gitlab.com/sylva-projects/sylva-core/-/issues/2997 and https://gitlab.com/sylva-projects/sylva-core/-/issues/2875) The aim of this merge request is:

  • to update the leaks check script of the CI too look for secret leaks in the pods logs and on the configmap For this purpose, the script now retrieve all the configmaps defined in the cluster and efor each of the key evaluate the value against the secret regex
  • fix an issue with the .gitlab/ci/tests/security/secret-leak-check.yml script to edit the host file to add information needed by the script to reach the vault ingress

Closes #2879

Edited by Samuel Bartel

Merge request reports