You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Files like .env contain most of the times plain text credentials. While these files should be added to the .gitignore list, sometimes they can be pushed to the repo by mistake , leaking API tokens, passwords or other sensitive info.
Policy proposed: disallow specific files
file-disallow:
- .env
- conf.xml
This policy could also check that these files are inside the .gitignore. We can use https://github.com/github/gitignore as reference and example.
The text was updated successfully, but these errors were encountered:
david3107
changed the title
Include repo check to identify sensitive files that should not be in the repository
Policy to identify sensitive files that should not be in the repository
May 17, 2024
Files like
.env
contain most of the times plain text credentials. While these files should be added to the.gitignore
list, sometimes they can be pushed to the repo by mistake , leaking API tokens, passwords or other sensitive info.Policy proposed: disallow specific files
This policy could also check that these files are inside the
.gitignore
. We can use https://github.com/github/gitignore as reference and example.The text was updated successfully, but these errors were encountered: