Random string entropy detector
Bridgecrew Policy ID: BC_GIT_80
Chekov Check ID: CKV_SECRET_80
Severity: LOW
Random string entropy detector
Description
Entropy checks help detect unstructured secrets by measuring the entropy level of a single string. Entropy is a concept used to assign a numerical score to how unpredictable a password is or the likelihood of highly random data in a string of characters. Strings with a high entropy score are flagged as suspected secrets.
Fix - Buildtime
Various services
Step 1: Revoke the token
Step 2: Monitor for abuse
Updated 10 months ago