From 7cba4d0756db47f548f44d0f6437b83beaed9dfd Mon Sep 17 00:00:00 2001
From: GeWuYou <95328647+GeWuYou@users.noreply.github.com>
Date: Mon, 2 Feb 2026 08:39:47 +0800
Subject: [PATCH] =?UTF-8?q?feat(ci):=20=E9=9B=86=E6=88=90=20MegaLinter=20?=
 =?UTF-8?q?=E4=BB=A3=E7=A0=81=E8=B4=A8=E9=87=8F=E6=89=AB=E6=8F=8F=E5=B7=A5?=
 =?UTF-8?q?=E5=85=B7?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- 添加 MegaLinter 扫描步骤到 CI 流程
- 配置 GITHUB_TOKEN 环境变量用于访问权限
- 保持 TruffleHog 敏感信息扫描功能
---
 .github/workflows/ci.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 7a3dfe1..c5b5c30 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -22,6 +22,11 @@ jobs:
         uses: actions/checkout@v6
         with:
           fetch-depth: 0
+      # MegaLinter扫描步骤
+      - name: MegaLinter
+        uses: oxsecurity/megalinter@v9.3.0
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
       # TruffleHog OSS 扫描步骤
       # 使用 TruffleHog 工具扫描代码库中的敏感信息泄露，如API密钥、密码等
       # 该步骤会比较基础分支和当前提交之间的差异，检测新增内容中是否包含敏感数据