← Back to Landscape

#14DELIVERYSCAN

Secrets Detection

Prevent secrets in code

Easy

Overview

Scan commits for accidentally committed secrets like API keys, passwords, tokens, and certificates.

Why It Matters

Never commit API keys, passwords, or tokens. Catches mistakes before they become breaches.

Implementation Pattern

1Scan commits for patterns
2Block commits with secrets
3Alert on findings

Tool Examples

These are examples, not endorsements. Choose what fits your context.

Gitleaks

detect-secrets

Dependencies

Requires (must have first)

•#5 Code Check-in

Enables (unlocks)

•#50 Secrets Management

Same Phase

Other capabilities in this pipeline phase

Quick Actions

View in Flow View full landscape Assess your platform

#13 Dependency Scan (SCA)

#15 LLM Security Triage