Change rule severity and other metadata by forking rules
Change rule severity and other metadata by forking rules
14 docs tagged with "Semgrep Secrets"
View all tagsCustom rules
Learn about Semgrep Secrets rules.
Custom validators
Learn about validators used in Semgrep Secrets rules.
error: externally-managed-environment
Learn how to handle externally managed environment errors when installing Semgrep using pip.
Glossary
Definitions of Semgrep Secrets product-specific terms.
Manage rules
The Policies page is a visual representation of the rules that Semgrep Secrets uses to scan code.
Overview
Learn how Semgrep Secrets detects leaked secrets and helps you prioritize what keys to rotate.
Scan for generic secrets
Use Semgrep to identify generic secrets in your code.
Scan for secrets
Set up secrets scanning to find and rotate valid leaked secrets.
Scan your Git history (beta)
Detect valid, leaked secrets in previous Git commits through a historical scan.
Triage and remediation
Learn how to triage findings identified by Semgrep Secrets.
Why didn't Semgrep ignore the files and folders in the Secrets Path ignores for this project?
Product-specific path ignores require a supported CLI version.
Why didn't Semgrep Secrets find these example secrets?
Semgrep Secrets attempts to reduce false positives by bypassing common example secret patterns.
Why do the findings count differ in the API and the Semgrep AppSec Platform UI?
Learn why the count of findings differs in the API and Semgrep AppSec Platform.