captainhook/secrets

Utility classes to detect secrets

Maintainers

Details

github.com/captainhookphp/secrets

Source

Issues

Fund package maintenance!
sebastianfeldmann

Installs: 249 679

Dependents: 1

Suggesters: 0

Security: 0

Stars: 5

Watchers: 2

Forks: 0

Open Issues: 0

0.9.5 2023-11-30 18:10 UTC

Requires

MIT 8aa90d5b9b7892abd11b9da2fc172a7b32b90cbe

  • Sebastian Feldmann <sf.woop@sebastian-feldmann.info>

passwordssecretskeystokenscommit-msgprepare-commit-msgpost-merge

This package is auto-updated.

Last update: 2024-03-30 00:32:09 UTC

README

Latest Stable Version Minimum PHP Version Downloads License Build Status Twitter

This package is used to detect passwords in your code. Mainly to prevent you from committing them to your version control.

You can use the regular expressions provided by the classes under Regex\Supplier or make use of the included Detector class. You can easily create your own Supplier classes or open a pull-request if you think it would be useful to others.

Here are some usage examples:

Using Suppliers

$result = Detector::create()
         ->useSuppliers(
            Aws::class,
            Google::class,
            GitHub::class
        )->detectIn($myString)

if ($result->wasSecretDetected()) {
    echo "secret detected: " . implode(' ', $result->matches());
}

Using your custom regex

$result = Detector::create()
        ->useRegex('#password = "\\S"#i')
        ->detectIn($myString)

if ($result->wasSecretDetected()) {
    echo "secret detected: " . implode(' ', $result->matches());
}

The Detector also supports a white list

$result = Detector::create()
        ->useRegex('#password = "\\S"#i')
        ->allow('#root#')
        ->detectIn($myString)

if ($result->wasSecretDetected()) {
    echo "secret detected: " . implode(' ', $result->matches());
}