Open arjunharidasp opened 1 week ago
Can you add the secret detection criteria for Blackduck tool https://www.synopsys.com/software-integrity/software-composition-analysis-tools/black-duck-sca.html https://github.com/blackducksoftware
Blackduck Patterns bash <(curl -s https://detect.synopsys.com/detect9.sh) --blackduck.url=" https://blackduck-server.com/" --blackduck.api.token="XXXXXXXXXXXXXXXXXXXX" Examples text: | bash <(curl -s https://detect.synopsys.com/detect9.sh) --blackduck.url=" https://blackduck-server.com/" --blackduck.api.token="MWI5YTAwNDItMmI1NC00NjgxLTlmM2YtNzM4ZDdjYjY5NjVhOjgzZWIxYWQ4LWM4OGUtNDJjMy1hYWFiLWE1MDc0MzU1NjBhMw=="
Blackduck tokens are detected as secrets
Description
Can you add the secret detection criteria for Blackduck tool https://www.synopsys.com/software-integrity/software-composition-analysis-tools/black-duck-sca.html https://github.com/blackducksoftware
Blackduck Patterns bash <(curl -s https://detect.synopsys.com/detect9.sh) --blackduck.url=" https://blackduck-server.com/" --blackduck.api.token="XXXXXXXXXXXXXXXXXXXX" Examples text: | bash <(curl -s https://detect.synopsys.com/detect9.sh) --blackduck.url=" https://blackduck-server.com/" --blackduck.api.token="MWI5YTAwNDItMmI1NC00NjgxLTlmM2YtNzM4ZDdjYjY5NjVhOjgzZWIxYWQ4LWM4OGUtNDJjMy1hYWFiLWE1MDc0MzU1NjBhMw=="
Preferred Solution
Blackduck tokens are detected as secrets