GitHub - wayneashleyberry/vscode-entropy-scanner: Entropy Scanner is a Visual Studio Code extension that detects high entropy strings which may contain tokens, passwords, secrets or keys that should not be committed to source control

Entropy Scanner

Entropy Scanner detects high entropy strings in your code. This extension is implemented as a language server and client for Visual Studio Code.

High entropy strings may contain passwords, authentication tokens or private keys and should not be committed into version control. This extension provides real time insight into high entropy strings. You should still run pre-commit checks and scan code during continuous integration using another tool like tartufo.

Features

Highlight high entropy strings using Visual Studio Code diagnostics
Provides quick actions for excluding specific signatures
Respects the exclude-signatures, exclude-path-patterns and exclude-entropy-patterns options from your tartufo.toml

Known issues

This extension will nuke any comments in your tartufo.toml file when making changes, I haven't found a JavaScript TOML parser that does otherwise. Suggestions welcome!

Name		Name	Last commit message	Last commit date
Latest commit History 49 Commits
.github		.github
.vscode		.vscode
client		client
server		server
.eslintrc.json		.eslintrc.json
.gitignore		.gitignore
.vscodeignore		.vscodeignore
LICENSE		LICENSE
README.md		README.md
package-lock.json		package-lock.json
package.json		package.json
tsconfig.json		tsconfig.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Entropy Scanner

About

Releases 13

Sponsor this project

Contributors 2

Languages

License

wayneashleyberry/vscode-entropy-scanner

Folders and files

Latest commit

History

Repository files navigation

Entropy Scanner

About

Topics

Resources

License

Stars

Watchers

Forks

Releases 13

Sponsor this project

Contributors 2

Languages