repo-security-scanner: finds secrets accidentally committed to a git repo, eg passwords, private keys
- CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys
- Run it against your entire repo’s history by piping the output from git log -p
- Download the latest stable release of the CLI tool for your architecture
- Extract the tar and move the scanrepo binary to somewhere in your $PATH, eg /usr/bin
Check the entire history of the current branch for secrets.
Add false positives to
Set environment variables needed
env file and update environment variables.
Run test offenses
Copyright (c) 2017 chrisns