All too often, confidential secrets, such as API keys, access tokens, database credentials directly tied to cloud infrastructure (AWS, Azure, GCP) are found sprawled across GitHub, GitLab and BitBucket repositories. These exposures, often unintentional, pose a serious risk to cloud security.
To address this, Amazon developed a proactive countermeasure: a tool, called Git-Secrets, designed to help prevent secrets like these from being committed to source code repositories. Git-Secrets can be seamlessly integrated into your team’s workflow, acting as a safeguard during every code commit.
See below for access to this tool, which can serve as an additional layer of defense in depth within your development process.
