You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I am in the process of implementing your tool in pipelines of different types of applications and each one has a unique case as a unique application can be. I have an example that can give approval to this initiative.
A backend generates PDF based on HTML and a data object. The problem they found was that hosting the images of that HTML in a bucket (Cloud), for example, was slow (consider the scale) and embedding the images was significantly faster, resulting in alerting "Encoded values - scans for encoded secrets in Base64, hex etc."
{
"filename": "html_one.html",
"message": "Expected file to not contain base64 encoded texts such as: integrity="sha512-hZf9Qhp3rlDJBvAKvmiG+goaaKRZA..."
}
{
"filename": "html_one.html",
"message": "Expected file to not contain base64 encoded texts such as: src="data:image/png;base64,iVBORw0KGgoAAAANSUhE..."
}
I understand the risk, if they can put red texts on it I would be in favor, but there are cases that need it, in architecture, business, etc...
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Good day.
I am in the process of implementing your tool in pipelines of different types of applications and each one has a unique case as a unique application can be. I have an example that can give approval to this initiative.
A backend generates PDF based on HTML and a data object. The problem they found was that hosting the images of that HTML in a bucket (Cloud), for example, was slow (consider the scale) and embedding the images was significantly faster, resulting in alerting "Encoded values - scans for encoded secrets in Base64, hex etc."
{
"filename": "html_one.html",
"message": "Expected file to not contain base64 encoded texts such as: integrity="sha512-hZf9Qhp3rlDJBvAKvmiG+goaaKRZA..."
}
{
"filename": "html_one.html",
"message": "Expected file to not contain base64 encoded texts such as: src="data:image/png;base64,iVBORw0KGgoAAAANSUhE..."
}
I understand the risk, if they can put red texts on it I would be in favor, but there are cases that need it, in architecture, business, etc...
Thank you!
<3 Talisman!
Beta Was this translation helpful? Give feedback.
All reactions