New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move aws detector back to ID checking against secrets, make ID the redacted secret #617

Merged

dustin-decker merged 1 commit into main from adjust-aws-detector

Jun 9, 2022

Collaborator

trufflesteeeve commented Jun 9, 2022

This fixes the git engine test errors we've been seeing. However, it also resets some aspects of the AWS detector that were changed. Specifically:

AWS now tries all matched secrets against all IDs, rather than trying IDs against secrets (essentially the outer loop has been switched back)
The Redacted secret is now back to being the match ID, instead of no longer existing.

It also makes a couple of slight adjustments:

The AWS response body is immediately closed instead of deferred, as it is never used.
Anytime a verified secret is found, we skip all remaining secret matches and move on to the next ID. I'm not actually 100% sure that there are no duplicate key IDs, but that's my assumption in making this change.
Some variables are renamed to make it clear which of them is the ID and which of them is the secret.


          Move aws detector back to ID checking against secrets, make ID the re…

2b7b0d8

…dacted secret

trufflesteeeve requested review from bill-rich, mcastorina, dustin-decker and ahrav

June 9, 2022 18:57

dustin-decker approved these changes

View reviewed changes

Contributor

dustin-decker left a comment

Thanks Steve

dustin-decker merged commit 26bf166 into main

dustin-decker deleted the adjust-aws-detector branch

June 9, 2022 22:06

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet