fixed: secret-scan

Author: deviant101

.github/workflows/devsecops-pipeline.yml

@@ -160,12 +160,20 @@ jobs:
 
       - name: TruffleHog OSS
         uses: trufflesecurity/trufflehog@main
+        continue-on-error: true  # Don't fail on first commit
         with:
           path: ./
           base: ${{ github.event.repository.default_branch }}
           head: HEAD
           extra_args: --debug --only-verified
 
+      - name: TruffleHog Filesystem Scan (fallback for single commits)
+        if: failure()  # Run if previous step failed
+        uses: trufflesecurity/trufflehog@main
+        with:
+          path: ./
+          extra_args: --only-verified
+
   # Stage 8: Docker Build and Push
   docker-build:
     name: Docker Build and Push