detect-secrets
https://github.com/yelp/detect-secrets
Python
An enterprise friendly way of detecting and preventing secrets in code.
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported1 Subscribers
Add a CodeTriage badge to detect-secrets
Help out
- Issues
- To add pass as keyword for detecting secrets under label pass
- Gcp key detector
- Detect same secret multiple times in the same line or file
- File extension specific exclusions
- Add support for standard input on audit mode
- Investigate when valid high-entropy secrets do not have quotes (outside of yaml/ini files)
- Consider how to stop analyzing the whole file in audit
- audit can't find multi-line yaml strings and raises a ValueError
- Evaluate different entropy calculation
- Support json output when scanning strings
- Docs
- Python not yet supported