hngopher.com

       [HN Gopher] Show HN: Quickly find sensitive files in your GitHub...
       ___________________________________________________________________
        
       Show HN: Quickly find sensitive files in your GitHub repo
        
       Author : jdorfman
       Score  : 16 points
       Date   : 2022-05-27 16:50 UTC (1 days ago)
        
 (HTM) web link (about.sourcegraph.com)
 (TXT) w3m dump (about.sourcegraph.com)
        
       | yawnxyz wrote:
       | Are there any tools that check whether you're pushing keys and
       | secrets BEFORE you've uploaded them to Github and it's already
       | too late? E.g. checks your commits, and gives you a massive
       | warning when you've committed something you're not supposed to?
       | Even better if it prevents your commit from going through unless
       | you force it
        
         | itsmemattchung wrote:
         | How about a pre-commit hook?
         | 
         | https://github.com/pre-commit/pre-commit-hooks#detect-aws-cr...
         | 
         | Although a pre-commit hook exists for detecting AWS
         | credentials, I can imagine other checks (e.g ssh credentials,
         | passwords, etc)
        
         | bdhcuidbebe wrote:
         | You can use commit hooks to script git
        
       ___________________________________________________________________
       (page generated 2022-05-28 23:00 UTC)