From the course: DevSecOps: Building a Secure Continuous Delivery Pipeline
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Tool: Keeping secrets with git-secrets
From the course: DevSecOps: Building a Secure Continuous Delivery Pipeline
Tool: Keeping secrets with git-secrets
- [Instructor] One of the most common vectors for attackers to gain access to systems, are misconfigurations. One of these misconfigurations is credential leakage. Did a Junior Developer put the password in the application, or did they put the AWS Access Keys in version control? You know, for testing? Well, this sort of thing happens, but we can check for it with ease in a CICD pipeline. To do this, we'll use Git Secrets. First let's fire up a browser, and head over to Git Secrets page at Github.com/awslabs/git-secrets Down in the read-me, we can see some example usage, as well as how to install it for Linux, Mac, and Windows. I've already installed this on my machine, but if you want to follow along, follow the installation instructions found here. You will also need Git installed. So now we need something to test. I wrote a Small web application in golang for this CICD course that Ernice Muller and I recorded. Let's run Git Secrets on it. First we need to clone the repo so we can…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.