container-image-scan icon indicating copy to clipboard operation
container-image-scan copied to clipboard

Published 20 hours ago verified publisher icon CrowdStrike

prevent fail on secret

Open TomRyan-321 opened this issue 1 year ago • 1 comments

Temporary disable fail on secret detected until better path based exception handling implemented. Currently high match rates when importing AWS boto sdk and similar libraries which are impractical for users to clean up manually.

Some samples being detected dist-packages/botocore/data/iam/2010-05-08/examples-1.json dist-packages/botocore/data/sts/2011-06-15/examples-1.json dist-packages/botocore/data/cloud9/2017-09-23/examples-1.json

TomRyan-321 avatar Oct 22 '23 23:10 TomRyan-321

Perhaps a flag --ignore-secrets to disable this would be better for folks who aren't running into this specific issue.

ffalor avatar Oct 25 '23 15:10 ffalor