Cargando…

Why secret detection tools are not enough: It’s not just about false positives - An industrial case study

Checked-in secrets in version-controlled software projects pose security risks to software and services. Secret detection tools can identify the presence of secrets in the code, commit changesets, and project version control history. As these tools can generate false positives, developers are provid...

Descripción completa

Detalles Bibliográficos
Autores principales:	Rahman, Md Rayhanur, Imtiaz, Nasif, Storey, Margaret-Anne, Williams, Laurie
Formato:	Online Artículo Texto
Lenguaje:	English
Publicado:	Springer US 2022
Materias:	Article
Acceso en línea:	https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8928718/ https://www.ncbi.nlm.nih.gov/pubmed/35313538 http://dx.doi.org/10.1007/s10664-021-10109-y

Internet

https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8928718/
https://www.ncbi.nlm.nih.gov/pubmed/35313538
http://dx.doi.org/10.1007/s10664-021-10109-y

Why secret detection tools are not enough: It’s not just about false positives - An industrial case study

Internet

Ejemplares similares