Secret Leak Detection

Secrets leak in code, logs, configs. The detection.

Repo scanning

GitHub secret scanning. trufflehog. gitleaks.

Catches commits.

Log scanning

Periodic scan of logs for secret patterns.

Catches accidental logging.

Respond

Found leak: rotate immediately. Investigate.

Don't just delete the leak.