Skip to content

DEV Community

azu

Posted on Jul 12, 2021 • Updated on Jul 21, 2021

secretlint can mask the secrets

#security #credentials #tool #ci

secretlint is a pluggable linting tool to prevent committing credential.

secretlint 3.3.0 support --maskSecrets option that mask the actual secret of outputs.

Release v3.3.0 · secretlint/secretlint

For example, secretlint found AWS Secret Access key and report it. With --maskSecrets, secretlint mask the secrets in outputs.

$ secretlint --maskSecrets .credential

/Users/user/.credential
  1:0  error  [AWSSecretAccessKey] found AWS Secret Access Key: ****************************************  @secretlint/secretlint-rule-preset-recommend > @secretlint/secretlint-rule-aws

✖ 1 problem (1 error, 0 warnings)

It will help you to integrate secretlint with CI like GitLab.

https://docs.gitlab.com/ee/user/application_security/secret_detection/

For more details, see original issue.

Option or formatter to not echo the actual secret to stdout · Issue #176 · secretlint/secretlint

Top comments (0)

Subscribe

Read next

Running a Database Server on EC2: Best Practices and Considerations

Muhammad Naveed - Sep 28

🔒 Mastering OAuth 2.0 in Modern Web Applications: Security Best Practices for 2024 🚀

Hamza Khan - Oct 20

How I Made $6,200 in a Single Bug Bounty

Alexandre Vandamme - Oct 11

How to Use ENV variables in GitHub Actions

CiCube - Oct 30