Bridgecrew Policy ID: BC_GIT_5
Cloudant is a document-oriented and distributed database running on IBM Cloud. The service can be accessed via API calls. An optional authentication method requires a username and password. An alternate authentication method consists of a username and the corresponding apikey.
Fix - Buildtime
Step 1: Revoke the exposed secret.
The secret can be revoked from the IBM Cloudant dashboard in the Service credentials tab.
Step 2: Clean the git history.
Go under the settings section of your GitHub project and chose the change visibility button at the bottom.
Step 3: Inspect LogDNA logs to ensure the key was not utilized during the compromised period.
Updated 5 months ago