Use SQL to query secrets and more from source code.
- Get started โ
- Documentation: Table definitions & examples
- Community: Slack Channel
- Get involved: Issues
Install the plugin with Steampipe:
steampipe plugin install code
Run a query:
select
secret_type,
secret,
authenticated,
line,
col
from
code_secret
where
src =
'Mixed secrets are matched:\n'
'* Slack: xoxp-5228148520-5228148525-1323104836872-10674849628c43b9d4b4660f7f9a7b65\n'
'* AWS: AKIA4YFAKFKFYXTDS353\n'
'* Basic auth: https://joe:[email protected]/secret'
'* Stripe: sk_live_tR3PYbcVNZZ796tH88S4VQ2u';
Prerequisites:
Clone:
git clone https://github.com/turbot/steampipe-plugin-code.git
cd steampipe-plugin-code
Build, which automatically installs the new version to your ~/.steampipe/plugins
directory:
make
Configure the plugin:
cp config/* ~/.steampipe/config
vi ~/.steampipe/config/code.spc
Try it!
steampipe query
> .inspect code
Further reading:
- The
code_secret
table is based on Yelp's detect secrets project. The general matching approach and regular expressions are copied and based on their amazing work.
Please see the contribution guidelines and our code of conduct. All contributions are subject to the Apache 2.0 open source license.
help wanted
issues: