From 6544d60c779a20877aaa32f7288b5470f89d7872 Mon Sep 17 00:00:00 2001
From: Colin Saliceti <8416694+saliceti@users.noreply.github.com>
Date: Thu, 28 May 2026 15:49:14 +0100
Subject: [PATCH] Use scan-secrets shared Github action

---
 .github/workflows/stage-1-commit.yaml | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/stage-1-commit.yaml b/.github/workflows/stage-1-commit.yaml
index cdce7f06..568940c8 100644
--- a/.github/workflows/stage-1-commit.yaml
+++ b/.github/workflows/stage-1-commit.yaml
@@ -34,16 +34,15 @@ on:
 
 jobs:
   scan-secrets:
-    name: "Scan secrets"
+    name: Scan secrets
     runs-on: ubuntu-latest
-    timeout-minutes: 2
     steps:
-      - name: "Checkout code"
+      - name: Checkout code
         uses: actions/checkout@v6
         with:
-          fetch-depth: 0 # Full history is needed to scan all commits
-      - name: "Scan secrets"
-        uses: ./.github/actions/scan-secrets
+          fetch-depth: 0x7fffffff # INFINITE_DEPTH
+      - name: Scan secrets
+        uses: NHSDigital/nhs-github-actions/scan-secrets@main
   check-file-format:
     name: "Check file format"
     runs-on: ubuntu-latest