Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AST-84346 #1048

Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

AST-84346 #1048

wants to merge 6 commits into from

Conversation

cx-diogo-rocha
Copy link
Collaborator

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

Added Scorecard only integration test to detect issues with usage of repo credentials

References

https://checkmarx.atlassian.net/browse/AST-84346

Testing

The change is the test

Checklist

  • I have added documentation for new/changed functionality in this PR (if applicable).
  • I have updated the CLI help for new/changed functionality in this PR (if applicable).
  • All active GitHub checks for tests, formatting, and security are passing
  • The correct base branch is being used

github-actions[bot]
github-actions bot reviewed Feb 14, 2025
View reviewed changes
@github-actions GitHub Actions
Copy link

github-actions bot commented Feb 14, 2025
edited
Loading

Logo
Checkmarx One – Scan Summary & Details2c9e710c-7115-432e-81bf-0b32d49d64f9

Great job, no security vulnerabilities found in this Pull Request

@gitguardian GitGuardian
Copy link

gitguardian bot commented Feb 27, 2025
edited
Loading

⚠️ GitGuardian has uncovered 2 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request
GitGuardian id GitGuardian status Secret Commit Filename
15671991 Triggered Generic High Entropy Secret 3011c64 internal/wrappers/client_test.go View secret
15776160 Triggered Generic High Entropy Secret 3011c64 test/integration/scan_test.go View secret
🛠 Guidelines to remediate hardcoded secrets
  1. Understand the implications of revoking this secret by investigating where it is used in your code.
  2. Replace and store your secrets safely. Learn here the best practices.
  3. Revoke and rotate these secrets.
  4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

@AlvoBen AlvoBen AlvoBen approved these changes

@greensd4 greensd4 Awaiting requested review from greensd4 greensd4 is a code owner

@miryamfoiferCX miryamfoiferCX Awaiting requested review from miryamfoiferCX miryamfoiferCX is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cx-diogo-rocha @AlvoBen