Geospatial #110
Open
Geospatial #110
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
| GitGuardian id | GitGuardian status | Secret | Commit | Filename | |
|---|---|---|---|---|---|
| 11074455 | Triggered | Hugging Face user access token | a2cbab2 | samples/BUILD_2023/.ipynb_checkpoints/LLAMA Deployment Test-checkpoint.ipynb | View secret |
| 11074455 | Triggered | Hugging Face user access token | a2cbab2 | samples/BUILD_2023/LLAMA Deployment Test.ipynb | View secret |
| 11074455 | Triggered | Hugging Face user access token | cbe5496 | samples/BUILD_2023/.ipynb_checkpoints/LLAMA Deployment Test-checkpoint.ipynb | View secret |
| 11074455 | Triggered | Hugging Face user access token | 461cc73 | samples/BUILD_2023/LLAMA Deployment Test.ipynb | View secret |
| 11074455 | Triggered | Hugging Face user access token | cbe5496 | samples/BUILD_2023/LLAMA Deployment Test.ipynb | View secret |
| 11074455 | Triggered | Hugging Face user access token | 461cc73 | samples/BUILD_2023/.ipynb_checkpoints/LLAMA Deployment Test-checkpoint.ipynb | View secret |
🛠 Guidelines to remediate hardcoded secrets
The above secret(s) have been detected in your PR. Please take an appropriate action for each secret:
- If it’s a true positive, remove the secret from source code, revoke it and migrate to a secure way of storing and accessing secrets (see http://go/secrets-and-code). Once that’s done, go to the incidents page linked in the “GitGuardian id” column (log in using SnowBiz Okta) and resolve the incident.
- If it’s a false positive, go to the incidents page linked in the “GitGuardian id” column (log in using SnowBiz Okta) and ignore the incident.
- If you didn't add this secret - and only then - you may ignore this check as it's non-blocking. If you did add the secret and you ignore this check, you'll be assigned a "Security Finding" ticket in Jira in a few days.
Note:
- A secret is considered leaked from the moment it touches GitHub. Rewriting git history by force pushing or other means is not necessary and doesn’t change the fact that the secret has to be revoked.
- This check has a “Skip: false positive” button. Don’t use it. It will mark all detected secrets as false positives but only in the context of this specific run - it won’t remember this action in subsequent check runs.
If you encounter any problems you can reach out to us on Slack: #gitguardian-secret-scanning-help
🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.