Victor Loux Bookmarks Tag: secret

1 bookmark tagged “secret

Best practices for managing & storing secrets like API keys and other credentials [2020]

blog.gitguardian.com/secrets-api-management/
It is extremely important to understand that code reviews will not always detect secrets, especially if they are hidden in previous versions of code. The reason code reviews are not adequate protection is because reviewers are only concerned with the difference between current and proposed states of the code, they do not consider the entire history of the project.