linter: Credentials Scanning Roadmap #116
Assignees
Labels
A-linter
Area - Linter
enhancement
New feature or request
help wanted
Extra attention is needed
T-initiative
Type - Initiative
Comments
DonIsaac
added a commit
to oxc-project/oxc
that referenced
this issue
Sep 22, 2024
## What This PR does Adds a new `oxc-security/api-key` rule that scans for hard-coded API keys. It is broken up into "secret rules", where each one is responsible for finding a different kind of key. It is architecturally identical to how lint rules themselves. This PR also includes the first of these rules, for AWS access key IDs. Logic and rules are based on [keyhunter](https://github.com/Donisaac/keyhunter). I've licensed that repo under GNU GPLv3, but it's my code and I can do what I want with it 😈 (read: I'm fine with it being MIT for oxc). This PR is a complete feature in its own right, but does not represent the end of this work. See oxc-project/backlog#116 to track overall progress.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Roadmap
oxc-securitypluginoxc-security/api-keysoxc#5906oxc-security/api-keysoxc#5938)Built-In Secret Scanners
oxc-security/api-keysoxc#5906)Authorization: Bearer <token>The text was updated successfully, but these errors were encountered: