Skip to content

telekom-mms/gitlab-credential-scanner

Folders and files

NameName
Last commit message
Last commit date

Latest commit

b63f350 · Feb 4, 2025
Dec 12, 2023
Jan 13, 2023
Nov 21, 2024
Jan 13, 2023
May 12, 2023
Jan 31, 2025
Jan 13, 2023
Nov 21, 2024
Nov 21, 2024
Apr 8, 2023
Oct 30, 2024
Feb 4, 2025

Repository files navigation

Automated credential scanner

Background: We wanted to scan all our GitLab projects for leaked credentials. This way we want to improve our security standards company wide. This ReadMe explains how we use KICS to scan all repositories and how you can opt-out.

This repo runs a CI Job which scans all accessible repositories for credentials and creates a ticket with the scan result if there are any findings.

If you fixed the findings you can close the created issue and this job will automatically reopen and update the existing ticket if there are new issues found.

Documentation

Please have a look at our official documentation: https://telekom-mms.github.io/gitlab-credential-scanner/

Contributing

If you want to contribute you can create a merge request so other colleagues will discuss the code with you. Make sure to add both a good and a bad practice to your code example.

License

Copyright 2022-2024 Deutsche Telekom MMS GmbH

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Author Information

  • Christopher Grau
  • Sebastian Gumprich
  • Christoph Sieber
  • Henrik Hülle
  • Andreas Hering
  • Sebastian Bieger
  • Daniel Uhlmann