Skip to content

cds-snc/github-secret-scanning

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

372 Commits
.devcontainer
.devcontainer
 
 
.github
.github
 
 
api
api
 
 
terragrunt
terragrunt
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
catalog-info.yaml
catalog-info.yaml
 
 
renovate.json
renovate.json
 
 

Repository files navigation

Github secret scanning alert service 🔬 ⚠️

This repo holds the API and infrastructure code for the Github secret scanning alert service.

When GitHub detects our registered secrets in public repositories, it will send an alert to this service. The detected secret will be logged and an alarm triggered so the impacted team can take action.

Local development

  1. Start the devcontainer.
  2. Make a copy of api/.env.example and name it api/.env.
  3. Run cd api && make dev and access on localhost:8000.

Your requests to the API will need an X-CloudFront-Header with the value you set in the api/.env file for CLOUDFRONT_HEADER:

curl http://localhost:8000/version \
    -H "X-CloudFront-Header: some-secret-value"

Alternatively, you can set CLOUDFRONT_HEADER=localhost to disable this check.

About

GitHub secret scanning alert service

github-secret-scanning.alpha.canada.ca/docs

Topics

python aws github-secrets

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

3 stars

Watchers

13 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Latest
Feb 14, 2023

Packages

No packages published

Contributors 6

Languages