Comments (3)
Hi there mind if I fork in
from git-secrets.
I would assume this kind of command would automatically install git-secrets (e.g., git-secrets --install), but I don't know how it could automatically register patterns, exclusions, or providers without a template of some kind.
Git provides built-in support for templatizing a repo, including hooks. For example, you can create a template directory that includes hooks, preconfigured patterns, exclusions, and providers. You could do this as a one-time setup step:
TEMPLATE_DIR="~/.git/templates/git-secrets"
# Create a template .git directory.
mkdir -p $TEMPLATE_DIR
# Install git-secrets to the template
git-secrets --install $TEMPLATE_DIR
# Put any providers, allowed, and patterns in the config file.
cat << EOF > $TEMPLATE_DIR/config
[secrets]
providers = git secrets --aws-provider
allowed = AKIAIOSFODNN7EXAMPLE
allowed = wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY
patterns = (\"|')?(AWS|aws|Aws)?_?(SECRET|secret|Secret)?_?(ACCESS|access|Access)?_?(KEY|key|Key)(\"|')?\\s*(:|=>|=)\\s*(\"|')?[A-Za-z0-9/\\+=]{40}(\"|')?
patterns = (\"|')?(AWS|aws|Aws)?_?(ACCOUNT|account|Account)_?(ID|id|Id)?(\"|')?\\s*(:|=>|=)\\s*(\"|')?[0-9]{4}\\-?[0-9]{4}\\-?[0-9]{4}(\"|')?
EOF
Note: The values present in the template config file are merged with other git configuration when initializing a repo.
When you clone a repo, simply provide the directory of the template:
git clone <some_repo> --template ~/.git/templates/git-secrets
This clones the repo and copies over the contents of the template to the .git directory, installing git-secrets and your git-secrets configuration. This also means that you can create different templates for different repos by just changing out the template path.
from git-secrets.
Hen - going to close this for now. Please let me know if Michael's answer above suffices and/or answers your question.
from git-secrets.
Related Issues (20)
- Add support for a configuration file that can contain the patterns, etc. and be included in the repo is desired. HOT 1
- Github Actions HOT 2
- grep: warning: stray \ before - HOT 1
- Error : Custom secret provider detection patterns aren't loaded when executing git secrets on windows. HOT 3
- Installation fails without a terminal HOT 10
- Secret rules being applied to unstaged files
- `say` command during install should be removed or made configurable by flag HOT 7
- /usr/local/bin/git-secrets: line 208: say: command not found HOT 1
- custom patterns wont work HOT 4
- Problem with file HEAD.secret HOT 1
- Can't get any response from scans HOT 4
- How to pass multiple patterns in .gitallowed file HOT 1
- `git-secrets --install` test failures without code changes
- Add a test for PRs that change README without updating the man page HOT 1
- Add *hashed* file version to .gitallowed? So future changes get caught containing secrets again HOT 1
- Java Key Store files
- How to allow aws account numbers with .gitallowed HOT 1
- .gitconfig file has universal read perms - should be restricted to current user
- Secret Santa
- Pre-Commit Autoupdate fails due to lack of `.pre-commit-hooks.yaml` file
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from git-secrets.