title | description | lead | date | draft | weight | toc | resources | ||
---|---|---|---|---|---|---|---|---|---|
Remediate alerts |
How to remediate alerts |
How do I remediate secrets in code once they have been found by BluBracket? |
2022-01-12 02:48:57 +0000 |
false |
300 |
true |
|
There are a number of best practices when it comes to handling secrets in code. Below are a few:
-
Encrypt your secrets
-
Use environmental variables
-
Use a secret manager to store your secrets, like HashiCorp Vault, Azure Key Vault, etc.
Once BluBracket has found a secret and you have had a chance to remediate the secret in code, marking it as reviewed will help you easily differentiate it from those that still require action.