[HN Gopher] Show HN: Quickly find sensitive files in your GitHub... ___________________________________________________________________ Show HN: Quickly find sensitive files in your GitHub repo Author : jdorfman Score : 16 points Date : 2022-05-27 16:50 UTC (1 days ago) (HTM) web link (about.sourcegraph.com) (TXT) w3m dump (about.sourcegraph.com) | yawnxyz wrote: | Are there any tools that check whether you're pushing keys and | secrets BEFORE you've uploaded them to Github and it's already | too late? E.g. checks your commits, and gives you a massive | warning when you've committed something you're not supposed to? | Even better if it prevents your commit from going through unless | you force it | itsmemattchung wrote: | How about a pre-commit hook? | | https://github.com/pre-commit/pre-commit-hooks#detect-aws-cr... | | Although a pre-commit hook exists for detecting AWS | credentials, I can imagine other checks (e.g ssh credentials, | passwords, etc) | bdhcuidbebe wrote: | You can use commit hooks to script git ___________________________________________________________________ (page generated 2022-05-28 23:00 UTC)