Secret and Privacy ScannerPreviewSecret Scanner is a tool that will help you and your company keep your repositories clean from confidential and sensitive data that might cause security issues and leaks or violate GDPR laws. |
Secret ScannerSecret Scanner is a tool that will help you and your company keep your repositories and Work Items clean from confidential and sensitive data that might cause security issues and leaks or violate GDPR laws. Scan your commits for secrets like passwords, API keys, usernames and other sensitive data. The scanner can also be used for ensuring GDPR compliance in your repositories. BackgroundSecrets and other sensitive data like personal data are frequent findings in software development repositories. Scans made by security researchers find that 16% of repositories on GitHub contain some form of secrets that should not be exposed. OverviewSecret scanner scans every commit as soon as the commit has made its way to Azure DevOps or GitHub. Potential secrets are then compared against an Exemption list. If a potential secret is not in the exemption list the scanner will alert both the developer and the Security Officer. Secret scanner’s highly configurable workflow enables for swift mitigation of potential security issues, securing your internal and production environments with little effort. Features
List of suspicious changesThe system will provide view of all suspicious activities from both Work Item Changes and Git commits.
WhitelistingFunctionality to whitelist and exempt result from future alerts.
Powerful statisticsUse statistics to track changes over time and identify areas where to improve.
Scan multiple scan sources from one toolSecret Scanner enables your company to scan multiple sources from one tool.
If you would like to know more or schedule a demo, please contact us at info@solidify.se For a full list of our services, products and courses visit www.solidify.dev |
