search

goodwithtech / dockle

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
https://containers.goodwith.tech/
Apache License 2.0
2.8k stars 139 forks source link

pkg/assessor/manifest: Add sensitive variable names checks #189

Closed qequ closed 2 years ago

qequ commented 2 years ago

Add check for sensitive variable names in commands history. Add unit tests. Add cli flag for adding sensitive keys to look for.

arieltorti commented 2 years ago

@tomoyamachi Would you care to take a look at this one ? I'm probably missing a few stuff.

tomoyamachi commented 2 years ago

@arieltorti Thanks! @qequ I committed some changes to your branch. Please have a look through it.

tomoyamachi commented 2 years ago

@qequ Thank you for your contribution!