cloudposse-archives / copyright-header

© Copyright Header is a utility to manipulate software licenses on source code.
https://cloudposse.com/accelerate
GNU General Public License v3.0
181 stars 61 forks source link

Add repo security scanner to CI #49

Open menge101 opened 6 years ago

menge101 commented 6 years ago

https://github.com/UKHomeOffice/repo-security-scanner

Checks for credentials, secrets, etc checked into repo, should be an easy add to CI

menge101 commented 6 years ago

Evaluate that one versus these:

https://github.com/awslabs/git-secrets https://github.com/zricethezav/gitleaks

osterman commented 6 years ago

This is a great suggestion. We'll work towards implementing it, but may take a while. We'll start by adding a couple of the utilities to our cloudposse/packages distribution and then integrate it into our cloudposse/build-harness.