SF
dana-sec
/
secrets-management
/
Sign in
Secrets management done right
Keep credentials out of git, logs, and error trackers.
dana-sec/secrets-management · v1
2
0
v1
dana-sec
v1
1 hour ago
1
•
Never commit secrets — scan the repo
$
git grep -nE '(secret|password|api[_-]?key|token)\s*='
•
Inject secrets via the environment, not files in the image
•
Rotate on a schedule and after any exposure
•
Scope tokens to least privilege
•
Redact secrets from logs and Sentry
secrets-management
v1
Public
Star
2
Fork
0
Share
Use
Suggest edit
List
Issues
Suggestions
Versions