Secrets: A command-line tool to prevent committing secret keys into your source(github.com)
github.com
Secrets: A command-line tool to prevent committing secret keys into your source
https://github.com/sirwart/secrets
5 comments
interesting that the author defines a list of pre-defined secrets to scan for
https://github.com/sirwart/secrets/blob/main/src/find_secret...
Why no check for AWS keys?
https://github.com/sirwart/secrets/blob/main/src/find_secret...
Why no check for AWS keys?
I actually did have a check for AWS keys earlier today, but as far as I can tell all the AWS keys with well defined prefixes are key IDs and not true secrets. It will still pick up AWS keys with the random string detection.
AWS has their own as well https://github.com/awslabs/git-secrets
you may also want to look at ggshield: https://github.com/GitGuardian/ggshield
https://crates.io/crates/secrets