Skip to content
Snippets Groups Projects

Resolve "Add Dependency Check"

Merged Resolve "Add Dependency Check"
7-add-dependency-check into develop
Merged Raul Barreras requested to merge 7-add-dependency-check into develop
Viewing commit c89076e2
Prev Next
Show latest version
2 files
+ 22
2
Compare changes
  • Side-by-side
  • Inline
Files
2
examples/Detect-Secrets.md
+ 21
1
# Secrets detection example
# Secrets detection example
## Parameters
@@ -22,3 +22,23 @@ variables:
script:
- docker run --rm -v "${PWD}:/work" -w /work its-registry.unl.edu/unl-its/docker-ci/detect-secrets -s -e 4.5
```
# Inline Allowlisting
To tell detect-secrets to ignore a particular line of code, simply append an inline pragma: allowlist secret comment. For example:
API_KEY = "blah-blah-but-actually-not-secret" # pragma: allowlist secret
print('hello world')
Inline commenting syntax for a multitude of languages is supported:
| Comment Style | Language Support |
| :------------ | :-------------- |
|# | e.g. Python, Dockerfile, YAML |
|// | e.g. Go, C++, Java |
|/* */ | e.g. C, Java |
|' | e.g. Visual Basic .NET |
| -- | e.g. SQL, Haskell |
| <!-- --!> | e.g. XML |
This may be a convenient way for you to allowlist secrets, without having to regenerate the entire baseline again. Furthermore, this makes the allowlisted secrets easily searchable, auditable, and maintainable.
_[source](https://github.com/Yelp/detect-secrets#secrets-baseline)_