Y
Hacker News
new
|
ask
|
show
|
jobs
by
davidumoh
3133 days ago
Really surprising to see that sensitive credentials were checked in to VCS. Apart from peer code review, how can a company avoid developers checking in sensitive data to VCS?
2 comments
rplnt
3133 days ago
You could have a git hook (even remote) that would check for pre-configured patterns and reject the push if it contains them.
Quick google yielded this
https://github.com/awslabs/git-secrets
link
selvakn
3133 days ago
Plug:
https://github.com/thoughtworks/talisman
link
Quick google yielded this https://github.com/awslabs/git-secrets