write and publish detection rules for open source tools in a separate repo #329

commjoen · 2022-06-29T14:39:07Z

get a repo organized with github actions, etc..
pick up the first secret from the testbed (create a secrets detection testbed branch with revoked credentials #201) to write rules/config for for both tools. best would be to take one you are very familiar with from the list in that issue (e.g. you can smell/recognize the credential for miles away 😄 )
setup a test suite to see if the tool(git-secrets/trufflehog/detect-secrets) using the rule detects exactly that and not too much (e.g. very low false positive ratio)
make sure we have a github action to fire the rule suite, linters, etc.
rinse and repeat for other secrets in testbed (e.g. create rules and detection tests, with possible separate issues in another git repo)

commjoen · 2022-07-01T09:27:51Z

this could be for https://github.com/Yelp/detect-secrets as well aaaand we might need base64 encoded/ hex encoding stuff as well?

mackowski · 2022-07-08T08:33:46Z

I will help with that

mack-droid · 2022-07-08T08:34:55Z

I am in for contribution.

su-muskan · 2022-07-08T08:37:41Z

I am up for the task

commjoen · 2022-07-08T08:42:00Z

Awesome! Assigned it to all 3 of you :) welcome to the team!

commjoen · 2022-07-08T12:26:09Z

Decisions to be tackled:

commjoen · 2023-09-29T04:15:07Z

Given nothign really came out of this, I am closing this issue and generating a new one with fresh assisgnment slot and hacktoberfest possibility.

commjoen assigned mackowski and mack-droid Jul 8, 2022

commjoen assigned su-muskan Jul 8, 2022

commjoen unassigned mackowski, su-muskan and mack-droid Jan 31, 2023

commjoen added the help wanted Extra attention is needed label Feb 13, 2023

commjoen added the hacktoberfest label Sep 29, 2023

commjoen closed this as completed Sep 29, 2023

Provide feedback