Open menge101 opened 6 years ago
Evaluate that one versus these:
https://github.com/awslabs/git-secrets https://github.com/zricethezav/gitleaks
This is a great suggestion. We'll work towards implementing it, but may take a while. We'll start by adding a couple of the utilities to our cloudposse/packages
distribution and then integrate it into our cloudposse/build-harness
.
https://github.com/UKHomeOffice/repo-security-scanner
Checks for credentials, secrets, etc checked into repo, should be an easy add to CI