From 6b8f7a4a552123ef48274768a3ad1ffe2627b2b9 Mon Sep 17 00:00:00 2001
From: Samia Wear <samia.wear1@nhs.net>
Date: Tue, 28 Apr 2026 10:11:38 +0100
Subject: [PATCH] update the guidance to use docker

---
 tools/gitleaks.md | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/tools/gitleaks.md b/tools/gitleaks.md
index 92a86082..d61488f8 100644
--- a/tools/gitleaks.md
+++ b/tools/gitleaks.md
@@ -58,7 +58,11 @@ Example GitHub Actions step:
 
 ```yaml
 - name: Run GitLeaks
-  run: gitleaks git --redact --verbose --log-opts="--all"
+  run:  docker run --rm --platform linux/amd64 \
+            -v "$(pwd):/repo" \
+            -w /repo \
+            ghcr.io/gitleaks/gitleaks:v8.30.1 \
+            git --source /repo --redact --verbose --log-opts="--all"
 ```
 
 If you maintain a custom configuration, store it in the repository and reference it explicitly in local and CI commands so the same rules apply everywhere.