Description
Actually i have an error when apply Secret Detection rule (SAST), this happends beacuse it detects the header and footer as vulnerabilty
this is the error
{
"id": "9c698746700510a04b2f7d68a6ca1d4a74b4fbea8e717ba7fef7004140ffbe7b",
"category": "secret_detection",
"name": "SSH private key",
"message": "SSH private key detected; please remove and revoke it if this is a leak.",
"description": "SSH private key",
"cve": "docker-prod/compile_web_for_etc_qa_costa_rica/main-es2015.b15c5bb733d9a2ca905c.js:03d104c669e3c7b6be7f989db8b12c8b910d3be8c1e2a73c9369d3cc0ba803b5:SSH private key",
"severity": "Critical",
"confidence": "Unknown",
"raw_source_code_extract": "-----BEGIN OPENSSH PRIVATE KEY-----",
"scanner": {
"id": "gitleaks",
"name": "Gitleaks"
},
"location": {
"file": "docker-prod/XXXXXXXXXX/main-es2015.b15c5bb733d9a2ca905c.js",
"commit": {
"sha": "0000000"
},
"start_line": 2
},
"identifiers": [
{
"type": "gitleaks_rule_id",
"name": "Gitleaks rule ID SSH private key",
"value": "SSH private key"
}
]
},