Sahwa@reddthat.com to Technology@lemmy.worldEnglish · 9 hours ago‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHubgizmodo.comexternal-linkmessage-square88fedilinkarrow-up1601arrow-down14cross-posted to: [email protected]
arrow-up1597arrow-down1external-link‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHubgizmodo.comSahwa@reddthat.com to Technology@lemmy.worldEnglish · 9 hours agomessage-square88fedilinkcross-posted to: [email protected]
minus-squarenymnympseudonym@piefed.sociallinkfedilinkEnglisharrow-up2·1 hour agoYou know what’s ironic? FedRAMP rules dictate that Thou Must Scan Thy Repos for Secrets (tokens, passwords, etc) GitHub, ButrBucket, etc all have this out of the box for enterprise customers https://support.atlassian.com/bitbucket-data-center/kb/how-to-scan-for-and-remove-passwords-or-secrets-in-bitbucket-server-repositories/
Only the best people
You know what’s ironic? FedRAMP rules dictate that Thou Must Scan Thy Repos for Secrets (tokens, passwords, etc)
GitHub, ButrBucket, etc all have this out of the box for enterprise customers
https://support.atlassian.com/bitbucket-data-center/kb/how-to-scan-for-and-remove-passwords-or-secrets-in-bitbucket-server-repositories/