Skip to content
secretz, minimizing the large attack surface of Travis CI
Go
Branch: master
Clone or download
Latest commit f25d846 Jul 12, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
lib add comments Jul 12, 2019
.gitignore public release Jul 12, 2019
.travis.yml public release Jul 12, 2019
LICENSE public release Jul 12, 2019
README.md Update README.md Jul 12, 2019
main.go add comments Jul 12, 2019
secretz.png public release Jul 12, 2019

README.md

secretz

secretz

License Build Status Go ReportCard

secretz is a tool that minimizes the large attack surface of Travis CI. It automatically fetches repos, builds, and logs for any given organization.

Built during and for our research on TravisCI: https://edoverflow.com/2019/ci-knew-there-would-be-bugs-here/

Usage:

secretz -t Organization [options]

Flags:

Flag Description Example
-t Organization to get repos, builds, and logs for secretz -t ExampleCo
-c Limit the number of workers that are spawned secretz -t ExampleCo -c 3
-delay delay between requests + random delay/2 jitter secretz -t ExampleCo -delay 900
-members [list | scan] Get all GitHub members belonging to Organization and list/scan them secretz -t ExampleCo -members scan
-timeout How long to wait for HTTP Responses from Travis CI secretz -t ExampleCo -timeout 20
-setkey Set API Key for api.travis-ci.org secretz -setkey yourapikey

Installation:

Via go get

go get -u github.com/lc/secretz

Via git clone

go get -u github.com/json-iterator/go
git clone git@github.com:lc/secretz
cd secretz && go build -o secretz main.go

Generate an API-Key:

travis login
travis token --org

Create config file

secretz -setkey <API-KEY>

Note:

Please keep your delay high and your workers low out of respect for TravisCI and their APIs. This will also help you from being rate-limited by them.

You can’t perform that action at this time.