Skip to content

Commit

Permalink
Fix line endings (classic Windows moment)
Browse files Browse the repository at this point in the history
  • Loading branch information
justinyaodu committed Dec 13, 2023
1 parent 0f55be4 commit bc5850e
Showing 2 changed files with 448 additions and 448 deletions.
54 changes: 27 additions & 27 deletions .secret-scan/secret-scan-config.json
Original file line number Diff line number Diff line change
@@ -1,27 +1,27 @@
{
"//": [
"To prevent a particular string from being flagged, add it (or a substring",
"of it) to this array. This can be useful if your repository contains an",
"example of what a credential should look like, a development credential",
"(e.g. a database on localhost), or a previously leaked credential that",
"has already been revoked. Obviously, do not put active credentials here."
],
"allowedStrings": ["mongodb://127.0.0.1", "mongodb://localhost", "mongodb+srv://username:password@cluster0.abcdef7.mongodb.net/?retryWrites=true&w=majority"],
"//": [
"Regexes used to scan the repository contents for secrets.",
"If possible, try to make the regex match the entire secret, or",
"allowedStrings might not work as expected. For example, if a regex",
"matches only 'mongodb', this string by itself does not contain any of the",
"strings in the allowlist, so it will still be flagged."
],
"secretRegexes": {
"mongodbUrl": "mongodb([+]srv)?://[^\\s]+",
"firebaseJsonPrivateKeyFile": "-----BEGIN PRIVATE KEY-----[^\\s]+"
},
"//": [
"Do not check for secrets in these files. You should almost always use",
"allowedStrings instead of this. We only add these files because they",
"naturally contain things that look like secrets, but aren't."
],
"skippedFiles": [".secret-scan/secret-scan-cache.json", ".secret-scan/secret-scan-config.json"]
}
{
"//": [
"To prevent a particular string from being flagged, add it (or a substring",
"of it) to this array. This can be useful if your repository contains an",
"example of what a credential should look like, a development credential",
"(e.g. a database on localhost), or a previously leaked credential that",
"has already been revoked. Obviously, do not put active credentials here."
],
"allowedStrings": ["mongodb://127.0.0.1", "mongodb://localhost", "mongodb+srv://username:password@cluster0.abcdef7.mongodb.net/?retryWrites=true&w=majority"],
"//": [
"Regexes used to scan the repository contents for secrets.",
"If possible, try to make the regex match the entire secret, or",
"allowedStrings might not work as expected. For example, if a regex",
"matches only 'mongodb', this string by itself does not contain any of the",
"strings in the allowlist, so it will still be flagged."
],
"secretRegexes": {
"mongodbUrl": "mongodb([+]srv)?://[^\\s]+",
"firebaseJsonPrivateKeyFile": "-----BEGIN PRIVATE KEY-----[^\\s]+"
},
"//": [
"Do not check for secrets in these files. You should almost always use",
"allowedStrings instead of this. We only add these files because they",
"naturally contain things that look like secrets, but aren't."
],
"skippedFiles": [".secret-scan/secret-scan-cache.json", ".secret-scan/secret-scan-config.json"]
}
Loading

0 comments on commit bc5850e

Please sign in to comment.