Block New Commits with Secrets or Credentials
tip
This check is currently under development and not yet implemented. Click here to learn how you can help.
Use Case
- Incubating: expected
- Active: expected
- Retiring: n/a
Description
New Commits Containing Secrets or Credentials are Blocked from Merging
Details
- C-SCRM: true
- Priority Group: P2
- Mitre: CWE-358
- Sources: OpenSSF Best Practices Badge Passing Level [no_leaked_credentials]
- How To: Github Docs