Skip to content

cds-snc/github-secret-scanning

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

263 Commits

.devcontainer

.devcontainer

 
 

.github

.github

 
 

api

api

 
 

terragrunt

terragrunt

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

catalog-info.yaml

catalog-info.yaml

 
 

renovate.json

renovate.json

 
 

Repository files navigation

Github secret scanning alert service 🔬 ⚠️

This repo holds the API and infrastructure code for the Github secret scanning alert service.

When GitHub detects our registered secrets in public repositories, it will send an alert to this service. The detected secret will be logged and an alarm triggered so the impacted team can take action.

Local development

  1. Start the devcontainer.
  2. Make a copy of api/.env.example and name it api/.env.
  3. Run cd api && make dev and access on localhost:8000.

Your requests to the API will need an X-CloudFront-Header with the value you set in the api/.env file for CLOUDFRONT_HEADER:

curl http://localhost:8000/version \
    -H "X-CloudFront-Header: some-secret-value"

Alternatively, you can set CLOUDFRONT_HEADER=localhost to disable this check.

About

GitHub secret scanning alert service

github-secret-scanning.alpha.canada.ca/docs

Topics

python aws github-secrets

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

3 stars

Watchers

12 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Latest
Feb 14, 2023

Packages

No packages published

Contributors 6

Languages