Fides - helping you keep secrets secret
Fides is a secret-scanning tool designed to sift through code repositories to identify secrets that have been accidentally committed.
Leveraging the powerful YARA language, a tool of choice among security professionals and malware analysts for building detection and classification tools.
- Scans recursively through all files in a repository
- Utilizes YARA rules for high accuracy and customization
- Can be easily integrated into CI/CD pipelines
Fides is intended to be run as a GitHub Action. Please refer to the GitHub Action configuration examples below to integrate Fides into your workflow.
# fides.yaml
name: Fides - helping you keep secrets secret
on: [push, pull_request]
jobs:
fides:
runs-on: ubuntu-latest
steps:
- name: Execute Fides Action
uses: joocer/fides@main