You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
This release convert almost secretlint packages to Pure ESM 🎉 Breaking Changes Require Node.js 18+ #538 package code format is ES2022 Update Docker image based on Node.js 18 #468 Update Exit Status #547 Secretlint exits with the following values 0: Linting succeeded, no errors found 1: Linting failed, errors found 2: Unexpected error occurred, fatal error Previously, these values are not defined
This commit was created on GitHub.com and signed with GitHub’s verified signature. Breaking Changes Add "sourceContent" and "sourceContentType" to result #362 This change only affect to rule creator. command line user: No need to change rule creator: Need to update snapshot This change add "sourceContent" and "sourceContentType" to secretlint result { "filePath": "[SNAPSHOT]/ng.secret/input.txt",
by The PyTorch Team If you installed PyTorch-nightly on Linux via pip between December 25, 2022 and December 30, 2022, please uninstall it and torchtriton immediately, and use the latest nightly binaries (newer than Dec 30th 2022). PyTorch-nightly Linux packages installed via pip during that time installed a dependency, torchtriton, which was compromised on the Python Package Index (PyPI) code rep
SecuritySecurity alert: Attack campaign involving stolen OAuth user tokens issued to two third-party integratorsOn April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read on to learn more about the im
タダです. リポジトリに AWS のアクセスキー,シークレットアクセスキーを載せてしまって情報の漏洩といったことが起こりうるので,その予防策としてSecretlintを触る機会があったためこの記事に備忘録をまとめます. Secretlint とは Secretlint 導入 Secretlint のルール Secretlint を実行する まとめ 参考情報 Secretlint とは Secretlint は azu さんが開発されている秘匿情報のコミットを防ぐツールです. github.com Secretlint 導入 Docker イメージも提供されていますが,今回は npm で導入し,npx secretlint --initで Secretlint の設定ファイルを生成します. $ npm install secretlint @secretlint/secretlint-rul
We have been witnessing an ever growing amount of supply chain security incidents in the wild. Everything from open source package managers security flaws being exploited to continuous integration systems being compromised to software artifacts being backdoored. And now, those incidents are starting to extend to the place where developers spend most of their time: their integrated development envi
コミット内容にトークンやSSHの秘密鍵など機密情報が入ってないかをチェックできるSecretlint 3.0をリリースしました。 Release v3.0.0 · secretlint/secretlint secretlint v3.0 support GitHub’s new authentication token detection - DEV Community 👩💻👨💻 secretlint 3.0では、GitHubの新しくなったトークン形式の検出に対応する@secretlint/secretlint-rule-githubのルールが追加されました。 Behind GitHub’s new authentication token formats | The GitHub Blog Authentication token format updates are ge
EngineeringSecurityBehind GitHub’s new authentication token formatsWe're excited to share a deep dive into how our new authentication token formats are built and how these improvements are keeping your tokens more secure. As we continue to… We’re excited to share a deep dive into how our new authentication token formats are built and how these improvements are keeping your tokens more secure. As w
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
処理を実行中です
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く