Scrub sensitive data from a repository - Training
learn.microsoft.com/en-us/training/modules/manage-sensitive-data-security-policies/3-scrub-sensitive-data-from-repository
1 Users
0 Comments
13 Highlights
0 Notes
Tags
Top Highlights
BFG Repo-Cleaner open source tool is extremely efficient and easy to use, because it provides you with a set of default actions to choose from that match many common use cases related to sensitive data
You know that your new software build will need to authenticate with external services in order to test functions. This could lead to the most common type of accidental commission of sensitive data: including login credentials in the code base.
pre-commit hooks
pre-commit plugins
the git filter-repo command and the BFG Repo-Cleaner open source tool
GitHub support technicians
Both git filter-repo and the BFG have tradeoffs. git filter-repo is powerful, allowing the removal of passwords or renaming of specific files or file sets.
However, its syntax is complex and it has strong risk of creating unforeseen problems in a repository's integrity, especially if you're running the Windows operating system.
You can remove the file from the latest commit with git rm.
Private information removal requests are appropriate for
It is important that you provide an explanation of how the data poses a security risk beyond merely stating that it does.
the organization should consider that data to be compromised, and change it immediately.
The git filter-repo command and the BFG Repo-Cleaner rewrite your repository's history, which changes the SHAs for existing commits that you alter and any dependent commits.
Ready to highlight and find good content?
Glasp is a social web highlighter that people can highlight and organize quotes and thoughts from the web, and access other like-minded people’s learning.