secretlint can mask the secrets

azu - Jul 12 '21 - - Dev Community

secretlint is a pluggable linting tool to prevent committing credential.

secretlint 3.3.0 support --maskSecrets option that mask the actual secret of outputs.

For example, secretlint found AWS Secret Access key and report it. With --maskSecrets, secretlint mask the secrets in outputs.

$ secretlint --maskSecrets .credential

/Users/user/.credential
  1:0  error  [AWSSecretAccessKey] found AWS Secret Access Key: ****************************************  @secretlint/secretlint-rule-preset-recommend > @secretlint/secretlint-rule-aws

✖ 1 problem (1 error, 0 warnings)
Enter fullscreen mode Exit fullscreen mode

It will help you to integrate secretlint with CI like GitLab.

For more details, see original issue.

. . . . . . . . . . . . . . . . . . .