During December 2024, Strick Subscriptions enhanced the security automation of the huggingface/smol-course repository by implementing CI/CD secrets scanning. They configured a GitHub Actions workflow using YAML to integrate Gitleaks, enabling automatic detection of exposed credentials in both pull requests and pushes. This approach proactively reduced the risk of accidental credential exposure and strengthened the project’s CI and security posture. The work focused on leveraging CI/CD best practices and security tooling, with no bugs reported or fixed during the period. The depth of the contribution lay in automating a critical security process, ensuring ongoing protection for the repository’s codebase.