Security & DevSecOps Practical By Samson Tanimawo, PhD Published Sep 29, 2025 4 min read

Secrets Detection Pre-Commit

Catch secrets before commit.

Pre-commit hook

gitleaks; detect-secrets.

Fast; runs on every commit.

CI scans the diff.

Catches what hooks miss.

Detected: rotate immediately. Don't just amend.

Treat as if leaked.