Tune secret detection rules

Why are we doing this work

Some rules are noisier than others. The rules in the Secret Detection analyzer are not immune to this reality and could use some attention. As secret detection continues to be a more widely used feature category, we should take a moment to tune some of the rules which are more prone to flagging false positives.

Relevant links

• keyhacks project
  • This project enumerates methods by which keys reported from specific services can be validated. Might be an interesting means of validating detected secrets for true positives?
• GitHub Universe secret detection notes

Non-functional requirements

• Documentation:
• Feature flag:
• Performance:
• Testing:

Implementation plan