Skip to content

Instantly share code, notes, and snippets.

View soutaro's full-sized avatar

Soutaro Matsumoto soutaro

View GitHub Profile
@soutaro
soutaro / goodcheck.yml
Last active March 14, 2019 23:11 — forked from sumyapp/goodcheck.yml
Secret check Goodcheck.yml, Inspired by Skyscanner/sonar-secrets
rules:
# Inspired by this rule: https://github.com/Skyscanner/sonar-secrets/blob/v1.3.0/java/src/main/java/org/sonar/skyscanner/java/checks/PrivateKeys.java
- id: review.sider.general.security.private_keys
pattern:
- "-----BEGIN RSA PRIVATE KEY-----"
- "-----BEGIN DSA PRIVATE KEY-----"
- "-----BEGIN EC PRIVATE KEY-----"
- "-----BEGIN OPENSSH PRIVATE KEY-----"
- "-----BEGIN PRIVATE KEY-----"
message: Do not put private keys in this repository.