How to ignore executables and link libraries when detect

Question

How to ignore executables and link libraries when detect

BoOuyang-TigerGraph opened this issue 3 years ago · comments

BoOuyang-TigerGraph commented 3 years ago

Hi all,
I am using detect secrets to scan the environment when the program is running, rather than the source code of the program. In order to improve the scanning speed, I don't want to scan the binary executable of the program. How can I set it?

best regards

John-Paul Dakran · Answer 1 · Thu Sep 29 2022 04:41:42 GMT+0800 (China Standard Time)

Hello. You can use the --exclude-files filter. This can be done via the CLI using the --exclude-files argument which accepts a regex. Or you can use the same filter in the .secrets.baseline file under the following filter with your custom file path regex:

{
      "path": "detect_secrets.filters.regex.should_exclude_file",
      "pattern": [
        "test*"
      ]
}

Lorenzo De Bernardini · Answer 2 · Fri May 17 2024 01:25:24 GMT+0800 (China Standard Time)

We're going to close this issue as it hasn't received any update in a very long time. Feel free to re-open it if you think it's still relevant.