Skip to content

leboncoin/sast-git-leaks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

89 Commits
config
config
 
 
sast_git_leaks
sast_git_leaks
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 
sast_git_leaks.py
sast_git_leaks.py
 
 

Repository files navigation

SAST GIT LEAKS

Python 3.4|3.8 License

SAST tool used to check leaks from your repositories

Prerequisites

Tools

You must install the tools:

Dependencies

Debian / Ubuntu

$> apt install python3-pip
$> cd sast-git-leaks
$> pip3 install -r requirements.txt

MacOS

$> brew install python3
$> cd sast-git-leaks
$> pip3 install -r requirements.txt

Get started

$> git clone https://github.com/orgs/leboncoin/sast-git-leaks --branch master --depth 1
$> cd sast-git-leaks
$> pip3 install -r requirements.txt
$> python3 sast_git_leaks.py -r <repo_name> -o <report_path.json> -t <tools,to,use,default,all>
$> cat <report_path.json> | jq

Usage

$> python3 sast_git_leaks.py --help
usage: sast_git_leaks.py [-h] -r REPO -o OUTPUT [-t TOOLS]

optional arguments:
  -h, --help            show this help message and exit
  -r REPO, --repo REPO  name of the repo to scan
  -o OUTPUT, --output OUTPUT
                        name of the json report
  -t TOOLS, --tools TOOLS
                        tools to use (gitleaks,shhgit)

Tools

Gitleaks

Link: https://github.com/zricethezav/gitleaks

Shhgit

Link: https://github.com/eth0izzle/shhgit

LICENSE

Licensed under the Apache License, Version 2.0 (the "License").

COPYRIGHT

Copyright 2020 Leboncoin

About

SAST Tool to check leaks from your git repositories

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

2 stars

Watchers

5 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages