Conversation
![cycode-security[bot]](https://avatars.githubusercontent.com/in/39308?s=60&v=4){kind=small}
|
|
||
| [default] | ||
| aws_access_key_id = AKIAFAKEKEY4DEFAULT00 | ||
| aws_secret_access_key = FakeDefaultSecret+xYzAbCdEfGhIjKlMnOpQrSt |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 94%
SHA: 3665a97e45
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
|
|
||
| # Additional fake AWS credentials for testing | ||
| AWSAccessKeyId=AKIAFAKEKEY2TESTSCANNER | ||
| AWSSecretKey=FAKE_SECRET_KEY_ABCDEFGHIJKLMNOPQRSTU |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 93%
SHA: 482979c051
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
| aws_secret_access_key=FakeDevSecretKey/AbCdEfGhIjKlMnOpQrStUvWx | ||
|
|
||
| [default] | ||
| aws_access_key_id = AKIAFAKEKEY4DEFAULT00 |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 93%
SHA: 352e14f35d
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
| AWSSecretKey=FAKE_SECRET_KEY_ABCDEFGHIJKLMNOPQRSTU | ||
|
|
||
| aws_access_key_id=AKIAFAKEKEY3DEVACCOUNT | ||
| aws_secret_access_key=FakeDevSecretKey/AbCdEfGhIjKlMnOpQrStUvWx |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 94%
SHA: b494098650
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
|
|
||
| [prod] | ||
| aws_access_key_id = AKIAFAKEKEY6PROD0000 | ||
| aws_secret_access_key = FakeProdSecret/MnOpQrStUvWxYzAbCdEfGhIj |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 94%
SHA: ad50b4c7b7
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
|
|
||
| [staging] | ||
| aws_access_key_id = AKIAFAKEKEY5STAGING0 | ||
| aws_secret_access_key = FakeStagingSecret/PqRsTuVwXyZaBcDeFgHiJkLm |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 95%
SHA: e88ed950ff
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
| AWSAccessKeyId=AKIAFAKEKEY2TESTSCANNER | ||
| AWSSecretKey=FAKE_SECRET_KEY_ABCDEFGHIJKLMNOPQRSTU | ||
|
|
||
| aws_access_key_id=AKIAFAKEKEY3DEVACCOUNT |
There was a problem hiding this comment.
❗Cycode: Secret of type: 'Generic Password' was found.
Severity: Medium
Confidence Score: 92%
SHA: 16736f5cce
Description
A generic secret or password is an authentication token used to access a computer or application and is assigned to a password variable.
Cycode Remediation Guideline
❗ How to revoke
- Change the password or secret in the system or application where it is used.
- Update any services, applications, or scripts that use the old password or secret with the new one.
- Invalidate any sessions or tokens that were authenticated using the old password or secret.
Tell us how you wish to proceed using one of the following commands:
| Tag | Short Description |
|---|---|
| #cycode_secret_revoked | Applies to this secret value for all repos in your organization |
| #cycode_secret_false_positive <reason> | Applies to this secret value for all repos in your organization |
1 participant
No description provided.