ASP.NET Core scan testing

Note

All Azure related secrets are real secrets which got deactivated before pushing them to the repository

SonarQube Cloud

other scans

GitHub secret scanning (reported under Security tab)

secrets added to the appsettings.json

{
  "ConnectionStrings": {
    "DefaultConnection": "Server=tcp:mfafidomeid.database.windows.net,1433;Initial Catalog=gridcard;Persist Security Info=False;User ID=damienadmin;Password={your_password};MultipleActiveResultSets=False;Encrypt=True;TrustServerCertificate=False;Connection Timeout=30;",
    "AzureServiceBus": "Endpoint=sb://damienbod-service-bus.servicebus.windows.net/;SharedAccessKeyName=coolkey;SharedAccessKey=ef13VEvOsypQT4Ca0F4w/LIS1susAkzkP+ASbDTk5GI="
  },
  "AzureAd": {
    "ClientSecret": "zkI8Q~HUbCVLgmdbDA6u9XkdA27zpZbqVdEz7a~z",
  },
  "ApiTwo": {
    "accessToken": "eygregertg4ert3gtrhzi76gfnDghmjhmjhmdfrsfreterhgfndghvbfvb"
  },
  "ApiThree": {
    "key": "fgfgfgmr43rfef)333ffrvvdedcggfd43r43gtjnumjnb"
  },
  "CosmosSecrets": {
    "PrimaryKey": "XYOWweBXrNUTlQR1lAi4FhurQa0RX6IfN4PvRWlwS3b7RjZ1vnTjJmi5ZKKW8riByAhtqgUxFqflACDbBtwnHA=="
  },
  "SecretMatchingGitHubPatternExactly": {
    "azure_app_configuration_connection_string": "Endpoint=https://rufer7-app-config.azconfig.io;Id=Rzwa;Secret=2j0xmEQpVWhIrXfjRoKpjtNXQzblP9dgNR9fLFa8rePX31E7s87AJQQJ99BDACYeBjFCQ7wWAAACAZACMRzn"
  }
}

secrets added to `AzureStorageProvider.cs`

private string _blobConnectionString = "https://sarufer7.blob.core.windows.net/test?sp=r&st=2025-06-18T11:07:27Z&se=2025-06-18T11:09:27Z&spr=https&sv=2024-11-04&sr=c&sig=JLS7wLGXxvFConsaEGWd4UeD%2BpfC2o9fYcMhH%2FAwnD8%3D";

private string _blobKey = "sp=r&st=2025-06-18T11:07:27Z&se=2025-06-18T11:09:27Z&spr=https&sv=2024-11-04&sr=c&sig=JLS7wLGXxvFConsaEGWd4UeD%2BpfC2o9fYcMhH%2FAwnD8%3D";

var blobClient2 = new BlobClient("https://sarufer7.blob.core.windows.net/test?sp=r&st=2025-06-18T11:07:27Z&se=2025-06-18T11:09:27Z&spr=https&sv=2024-11-04&sr=c&sig=JLS7wLGXxvFConsaEGWd4UeD%2BpfC2o9fYcMhH%2FAwnD8%3D", "test", "arbitrary-file.txt");

secrets added to `Program.cs`

var password = "admin1234";

Name		Name	Last commit message	Last commit date
Latest commit History 66 Commits
.github/workflows		.github/workflows
AspNetCoreWithSecrets		AspNetCoreWithSecrets
.gitignore		.gitignore
AspNetCoreWithSecrets.sln		AspNetCoreWithSecrets.sln
LICENSE		LICENSE
README.md		README.md
gh-secret-scanning-mail-notification.png		gh-secret-scanning-mail-notification.png
gh-secret-scanning-push-protection-alert.png		gh-secret-scanning-push-protection-alert.png
gitleaks.toml		gitleaks.toml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

ASP.NET Core scan testing

SonarQube Cloud

other scans

secrets added to the appsettings.json

secrets added to `AzureStorageProvider.cs`

secrets added to `Program.cs`

Links

About

Uh oh!

Releases

Packages

Uh oh!

Contributors 2

Uh oh!

Languages

License

damienbod/aspnetcore-scan-testing

Folders and files

Latest commit

History

Repository files navigation

ASP.NET Core scan testing

SonarQube Cloud

other scans

secrets added to the appsettings.json

secrets added to AzureStorageProvider.cs

secrets added to Program.cs

Links

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors 2

Uh oh!

Languages

secrets added to `AzureStorageProvider.cs`

secrets added to `Program.cs`

Packages