Remediate alerts

How do I remediate secrets in code once they have been found by BluBracket?

There are a number of best practices when it comes to handling secrets in code. Below are a few:

  • Encrypt your secrets

  • Use environmental variables

  • Use a secret manager to store your secrets, like HashiCorp Vault, Azure Key Vault, etc.

Once BluBracket has found a secret and you have had a chance to remediate the secret in code, marking it as reviewed will help you easily differentiate it from those that still require action.

Edit this page on GitHub