Description
This is a Bug Report
Problem:
Netlify PR preview builds are currently failing (since last night) due to a detected “likely secret” in multiple documentation files. The error appears during the secrets scanning phase:
5:05:19 PM: Scanning for secrets in code and build output.
5:05:19 PM: ────────────────────────────────────────────────────────────────
5:05:19 PM:
5:05:19 PM:
5:05:19 PM: ❯ Scanning complete. 43400 file(s) scanned. Secrets scanning found 0 instance(s) of secrets and 1 instance(s) of likely secrets in build output or repo code.
5:05:19 PM:
5:05:19 PM: "LS0t***" detected as a likely secret:
5:05:19 PM: found value at line 373 in content/en/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 374 in content/en/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 240 in content/id/docs/concepts/services-networking/connect-applications-service.md
5:05:19 PM: found value at line 241 in content/id/docs/concepts/services-networking/connect-applications-service.md
5:05:19 PM: found value at line 294 in content/ja/docs/concepts/services-networking/connect-applications-service.md
5:05:19 PM: found value at line 295 in content/ja/docs/concepts/services-networking/connect-applications-service.md
5:05:19 PM: found value at line 290 in content/ja/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 291 in content/ja/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 285 in content/ko/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 286 in content/ko/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 556 in content/zh-cn/docs/tutorials/services/connect-applications-service.md
5:05:19 PM: found value at line 557 in content/zh-cn/docs/tutorials/services/connect-applications-service.md
5:05:19 PM:
5:05:19 PM: To prevent exposing secrets, the build will fail until these likely secret values are not found in build output or repo files.Affected PR logs:
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685c1c38007f0e0008042f69
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685c1f339f0cdb0008cdc0fa
- https://app.netlify.com/projects/kubernetes-io-vnext-staging/deploys/685c21ddadb064000803141a
- https://app.netlify.com/projects/kubernetes-io-vnext-staging/deploys/685c2f8b7deca20008e6a0ee
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685c6e7e7968b30008dac691
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685c7d4d9bb1f7000853fe08
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685cac02b6115b0008262671
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685cb5ea2304b200084d6485
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685ceca72b7a0100082e99a5
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685cf3548d82d900089fa2f9
- https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/685d04f0c0cdea0008527858
Looks like any new PR build is failing now, preventing contributors from receiving Netlify preview.
Proposed Solution:
- Verify if this is real secret data
- Replace with mock or redact
- Whitelist if false positive
Additional Information:
The lines that is triggering the warning has been present in the repo since 2019 (for 'en' language, check commit 9ba54f5), so it’s unclear why this only started causing errors now.
website/content/en/docs/tutorials/services/connect-applications-service.md
Lines 373 to 374 in a2145d1
Maybe a recent Netlify config or dependency update might be triggering stricter scanning?