search

aristanetworks / openmgmt

Documentation and examples for using open network management tools such as OpenConfig
https://aristanetworks.github.io/openmgmt/
Apache License 2.0
70 stars 32 forks source link

adding allow list #147

Closed sulrich closed 2 months ago

sulrich commented 2 months ago

adding allow-list entry to address a false-positive in the secrets scanner.

sulrich commented 2 months ago

/secret-scanner apply allow list

arista-secret-scanner[bot] commented 2 months ago

Run 10257219399 scheduled. Result will be posted here when finished.

arista-secret-scanner[bot] commented 2 months ago

Allow list Summary

{
    "repository": "aristanetworks/openmgmt",
    "commit_hash": "53334b41900ea92f9a140086dfcaa116cb7368b9",
    "file_path": "docs/examples/mtls/index.md",
    "raw_secret": "-set-up-and-configure-a-certificate-authority-ca-on-ubuntu-20-04",
    "vcs": "github",
    "job_id": null,
    "allowed": true,
    "line_number": 160,
    "bug_id": null,
    "detector": "DigitalOceanToken",
    "author": "steve ulrich <sulrich@botwerks.org>"
}

Secrets disallowed ``` { "repository": "aristanetworks/openmgmt", "commit_hash": "cd510888b4161816708e3ae56dd39b4edd0a972b", "file_path": "examples/gnmi-gateway/server.key", "raw_secret": "-----BEGIN EC PRIVATE KEY-----\nMIGkAgEBBDDwRqEoQcYEN9ii01RjO1G3Wm+u+8wwXOw9UORVqIc8TSqbzhu8oyRY\n6KeU92YmujCgBwYFK4EEACKhZANiAAQqzrinK2P9BVy/GB+HqOlwN+ZHDQjIjUSY\nrwC5/Y6drOPbHzTTeArZihJVnjUsRW/NifxOMqYnrRjft36sIO96/buTG6M/4+rH\nXJvG2ep4fWJlna2lOqPtrjvZbiGHMSw=\n-----END EC PRIVATE KEY-----\n", "vcs": "github", "job_id": null, "allowed": false, "line_number": 4, "bug_id": null, "detector": "PrivateKey", "author": "burnyd " } ```
Unused allow list entries

Details: https://github.com/aristanetworks/secret-scanner-service/actions/runs/10257219399

sulrich commented 2 months ago

/secret-scanner apply allow list

arista-secret-scanner[bot] commented 2 months ago

Run 10257498984 scheduled. Result will be posted here when finished.

arista-secret-scanner[bot] commented 2 months ago

Allow list Summary

{
    "repository": "aristanetworks/openmgmt",
    "commit_hash": "53334b41900ea92f9a140086dfcaa116cb7368b9",
    "file_path": "docs/examples/mtls/index.md",
    "raw_secret": "-set-up-and-configure-a-certificate-authority-ca-on-ubuntu-20-04",
    "vcs": "github",
    "job_id": null,
    "allowed": true,
    "line_number": 160,
    "bug_id": null,
    "detector": "DigitalOceanToken",
    "author": "steve ulrich <sulrich@botwerks.org>"
}

Secrets disallowed ``` { "repository": "aristanetworks/openmgmt", "commit_hash": "cd510888b4161816708e3ae56dd39b4edd0a972b", "file_path": "examples/gnmi-gateway/server.key", "raw_secret": "-----BEGIN EC PRIVATE KEY-----\nMIGkAgEBBDDwRqEoQcYEN9ii01RjO1G3Wm+u+8wwXOw9UORVqIc8TSqbzhu8oyRY\n6KeU92YmujCgBwYFK4EEACKhZANiAAQqzrinK2P9BVy/GB+HqOlwN+ZHDQjIjUSY\nrwC5/Y6drOPbHzTTeArZihJVnjUsRW/NifxOMqYnrRjft36sIO96/buTG6M/4+rH\nXJvG2ep4fWJlna2lOqPtrjvZbiGHMSw=\n-----END EC PRIVATE KEY-----\n", "vcs": "github", "job_id": null, "allowed": false, "line_number": 4, "bug_id": null, "detector": "PrivateKey", "author": "burnyd " } ```
Unused allow list entries

Details: https://github.com/aristanetworks/secret-scanner-service/actions/runs/10257498984