Add secrets job to deploy dependencies

Deploy jobs now wait for the secrets/gitleaks scan to pass before running. This ensures no deployment happens if security scans fail.
2026-01-15 19:06:18 +00:00
parent fadf8cd3e1
commit 8c0327d2d2
2 changed files with 2 additions and 1 deletions
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -175,7 +175,7 @@ frontend_tests:
 # Shared deploy configuration
 .deploy_template: &deploy_template
  stage: deploy
-  needs: [build_image, kics, hadolint, python_tests, frontend_tests]
+  needs: [build_image, kics, hadolint, python_tests, frontend_tests, secrets]
  image: deps.global.bsf.tools/registry-1.docker.io/alpine/k8s:1.29.12

 .helm_setup: &helm_setup