Secrets Detector Added To Amazon CodeGuru
Written by Kay Ewbank   
Monday, 29 November 2021

Amazon has updated CodeGuru to detect hardcoded secrets, such as usernames and passwords, database connection strings, tokens, and API keys from AWS in Java and Python repositories.

As we reported back in July 2020, CodeGuru is a developer tool that uses machine learning to identify potential security vulnerabilities, ways code quality could be improved, and which areas of code are the most expensive in terms of system resources.

AWSSecrets

This latest update adds a secrets detector feature that searches your codebase for hardcoded secrets. What Amazon means by secrets are things such as usernames and passwords, database connection strings, tokens, and API keys from AWS and other service providers. CodeGuru can identify the locations of such items, and will provide a recommendation that can be acted upon. The recommendation links to AWS Secrets Manager where developers can point and click to make the vulnerable information secure.

When you add a new repository to Amazon CodeGuru Reviewer, secrets detector will automatically search Python and Java source, in addition to configuration and documentation files, for information that should be secured.

AWSSecretspic

CodeGuru Reviewer then integrates with your pull request workflow or CI/CD pipeline, and warns of new vulnerabilities as they arise.

On the AWS News blog,  Alex Casalboni explains:

These new detectors use machine learning (ML) to identify hardcoded secrets as part of your code review process, ultimately helping you to ensure that all new code doesn’t contain hardcoded secrets before being merged and deployed. In addition to Java and Python code, secrets detectors also scan configuration and documentation files. CodeGuru Reviewer suggests remediation steps to secure your secrets with AWS Secrets Manager, a managed service that lets you securely and automatically store, rotate, manage, and retrieve credentials, API keys, and all sorts of secrets.

This new functionality is included as part of the CodeGuru Reviewer service at no additional cost. 

 

codegurusq

More Information

Amazon CodeGuru

 

Related Articles

Amazon CodeGuru Now Available

Code Guru For Automated Code Review

To be informed about new articles on I Programmer, sign up for our weekly newsletter, subscribe to the RSS feed and follow us on Twitter, Facebook or Linkedin.

Banner


IBM Updates Granite Models
28/10/2024

IBM has released new Granite models that it says provide state-of-the-art performance relative to model size. The Granite 3.0 collection includes a new, instruction-tuned, dense decoder-only LLM.



OpenAI Releases Swarm
25/10/2024

OpenAI has released an experimental educational framework for exploring ergonomic, lightweight multi-agent orchestration. Swarm is managed by the OpenAI Solution team, but is not intended to be used i [ ... ]


More News

espbook

 

Comments




or email your comment to: comments@i-programmer.info

Last Updated ( Monday, 29 November 2021 )