Reply to post:

Codecov dev tool warns of stolen credentials from compromised script, undiscovered for two months

claimed

Amazon released git secrets, which is absolutely brilliant if you're an old school developer who actually checks out to a local repository, etc

Most 'developers' I see are clicking about in github and don't really know what they're doing. Call me old fashioned, but uploading secrets so that they can be detected rather defeats the point.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021