DevOps Articles

Curated articles, resources, tips and trends from the DevOps World.

GitHub Now Enables You to Find and Fix Code for Free

2 years ago thenewstack.io
GitHub Now Enables You to Find and Fix Code for Free

Summary: This is a summary of an article originally published by The New Stack. Read the full original article here →

When I started programming, no one would ever put secrets in their code, such as passwords, credentials, keys, and access tokens. Then, with https://thenewstack.io/intel-to-continue-buying-spree-of-saas-vendors/ and https://thenewstack.io/investigating-the-next-generation-of-infrastructure-as-a-service/, we’d often insert tokens to invoke other services into our code.

For secret matches found in public repositories, create a secret alert service that accepts webhooks from GitHub that contain the secret scanning message payload.

Specifically, once-secret scanning alerts are available on your repository, you can watch them via your repository’s settings under “Code security and analysis” settings.

GitHub’s secret scanning push protection stops me before a secret is pushed into the code base, saving me tons of time.

Read More
Oh Dear
Oh Dear
The all-in-one monitoring tool for your entire website
Fathom
Fathom
Fathom Analytics: A Better Google Analytics Alternative
Namecheap
Namecheap
DevOpsChat Logo Your DevOps Community
Product
Useful Links

Made with pure grit © 2024 Jetpack Labs Inc. All rights reserved. www.jetpacklabs.com