Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/telekom-mms/gitlab-credential-scanner
Automated Credential Scans with KICS
https://github.com/telekom-mms/gitlab-credential-scanner
credentials docker gitlab kics python scanner
Last synced: about 1 month ago
JSON representation
Automated Credential Scans with KICS
- Host: GitHub
- URL: https://github.com/telekom-mms/gitlab-credential-scanner
- Owner: telekom-mms
- License: apache-2.0
- Created: 2023-01-06T12:17:45.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2024-12-05T03:31:58.000Z (about 1 month ago)
- Last Synced: 2024-12-05T04:25:00.553Z (about 1 month ago)
- Topics: credentials, docker, gitlab, kics, python, scanner
- Language: Python
- Homepage: https://telekom-mms.github.io/gitlab-credential-scanner/
- Size: 655 KB
- Stars: 7
- Watchers: 7
- Forks: 1
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
# Automated credential scanner
Background: We wanted to scan all our GitLab projects for leaked credentials. This way we want to improve our security standards company wide. This ReadMe explains how we use KICS to scan all repositories and how you can opt-out.
This repo runs a CI Job which scans all accessible repositories for credentials and creates a ticket with the scan result if there are any findings.
If you fixed the findings you can close the created issue and this job will automatically reopen and update the existing ticket if there are new issues found.
## Documentation
Please have a look at our official documentation: [https://telekom-mms.github.io/gitlab-credential-scanner/](https://telekom-mms.github.io/gitlab-credential-scanner/)
## Contributing
If you want to contribute you can create a merge request so other colleagues will discuss the code with you. Make sure to add both a good and a bad practice to your code example.
## License
Copyright 2022-2024 Deutsche Telekom MMS GmbH
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
## Author Information
- Christopher Grau
- Sebastian Gumprich
- Christoph Sieber
- Henrik Hülle
- Andreas Hering
- Sebastian Bieger
- Daniel Uhlmann