ggshield icon indicating copy to clipboard operation
ggshield copied to clipboard

Published 20 hours ago verified publisher icon GitGuardian

Detect secrets inside vuejs `ref()`

Open devidw opened this issue 2 years ago • 1 comments

Is your feature request related to a problem? Please describe. Scanning a vuejs repo for secrets doesn't detect, when a secret is written inside the ref() function.

The following gets detected:

const apiKey = 'THE-API-KEY'

But this doesn't:

const apiKey = ref('THE-API-KEY')

Describe the solution you'd like Also detect those secrets, that are stored within ref('…')

Describe alternatives you've considered no alternatives

Additional context In case it's relevant, which API keys were used, this behaviour was detected using API-Keys from Deta.

devidw avatar Jun 03 '22 12:06 devidw

Thanks for your report. We are going to investigate this.

agateau-gg avatar Jun 14 '22 08:06 agateau-gg