Secret detection capability - Githubissues

kubescape / kubevuln

Kubevuln is an in-cluster component of the Kubescape security platform. It scans container images for vulnerabilities, using Grype as its engine.

Apache License 2.0

17 stars 19 forks source link

Secret detection capability #206

Open slashben opened 5 months ago

slashben commented 5 months ago

Overview

A capability that finds secrets (private key, tokens and other credential materials) in the container image and publishes it in the scan results.

Checklist before requesting a review

put an [x] in the box to get it checked

[x] My code follows the style guidelines of this project
[x] I have commented on my code, particularly in hard-to-understand areas
[x] I have performed a self-review of my code
[x] If it is a core feature, I have added thorough tests.
[ ] New and existing unit tests pass locally with my changes

github-actions[bot] commented 5 months ago

Summary:

License scan: failure
Credentials scan: failure
Vulnerabilities scan: failure
Unit test: success
Go linting: success

github-actions[bot] commented 5 months ago

Summary:

License scan: failure
Credentials scan: failure
Vulnerabilities scan: failure
Unit test: success
Go linting: success

github-actions[bot] commented 5 months ago

Summary:

License scan: failure
Credentials scan: failure
Vulnerabilities scan: failure
Unit test: success
Go linting: success