gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
I can see a few false positive issues come up with a few key types, particularly with GitHub. I'd recommend a bi-annual review of key changes to see if regex patterns need to be updated. Gitleaks does a good job at this and I'd recommend to take a look at some of their config files as reference.
I can see a few false positive issues come up with a few key types, particularly with GitHub. I'd recommend a bi-annual review of key changes to see if regex patterns need to be updated. Gitleaks does a good job at this and I'd recommend to take a look at some of their config files as reference.