/docker-secrets

CLI based tools to find the secrets in docker Images

Primary LanguageGoApache License 2.0Apache-2.0

docker-secrets

CLI based tools to find the secrets in docker Images

This tool use detect-secrets to find the secrets in the docker Image file system

Pre-requisite

  • detect-secrets Installed
  • Image that need to be scanned on your local system

Installation

  • Download the binary from the release page here and put it the path
  • To build locally
  • Clone the repository
git clone https://github.com/JOSHUAJEBARAJ/docker-secrets.git

Build the binary

go build .

Usage

Export the Docker API Version

export DOCKER_API_VERSION=1.39

docker pull imagename:tag

docker-secrets scan <image=name>:tag

Note

By default the below command will be executed for detect-secrets.

detect-secrets scan --all-files output

If you want to make change to the command , You can change it here

TODO

  • Ability to pull the image if it is not present in the local system
  • Resolve the symlink error while extracting