Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
smoyer
on Feb 19, 2018
|
parent
|
context
|
favorite
| on:
A Hacker Has Wiped a Spyware Company’s Servers
Agreed ... use a pre-commit hook to scan your repository for high-entropy strings before they are forever enshrined in your history (
https://github.com/dxa4481/truffleHog
).
tachyoff
on Feb 20, 2018
|
next
[–]
To be fair, though, history can be rewritten, albeit sometimes with some difficulty.
ameliaquining
on Feb 20, 2018
|
parent
|
next
[–]
If a secret has
ever
been in Git then you probably can't know where it's been copied to and should treat it as likely to have been leaked.
djglass
on Feb 20, 2018
|
prev
[–]
Great idea! Thanks for linking to that tool.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: