Add example AWS keys to allowlist for Secret Detection
Release notes
Problem to solve
Our Secret Detection analyzer currently detects AWS tokens as secrets even if those tokens end in "EXAMPLE". This is a common false positive because the AWS documentation uses AKIAI44QH8DHBEXAMPLE in their documentation examples. This example token is commonly used as placeholders and in code comments and should be ignored.
Proposal
- Create an allow list regular expression to ignore secret detection findings for AWS tokens that end in
EXAMPLE.
Intended users
Feature Usage Metrics
Does this feature require an audit event?
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.