puaros/packages/guardian/tests/unit/infrastructure/SecretDetector.test.ts at 0b1cc5a79a6d1edee8dacfcd00e68f20d5b43b9d

mirror of https://github.com/samiyev/puaros.git synced 2025-12-27 23:06:54 +05:00

Files

imfozilbek 0b1cc5a79a feat: add secret detection with Secretlint (v0.8.0)

Add critical security feature to detect 350+ types of hardcoded secrets
using industry-standard Secretlint library.

Features:
- Detect AWS keys, GitHub tokens, NPM tokens, SSH keys, API keys, etc.
- All secrets marked as CRITICAL severity
- Context-aware remediation suggestions per secret type
- New SecretDetector using @secretlint/node
- New SecretViolation value object (100% test coverage)
- CLI output with "🔐 Secrets" section
- Async pipeline support for secret detection

Tests:
- Added 47 new tests (566 total, 100% pass rate)
- Coverage: 93.3% statements, 83.74% branches
- SecretViolation: 23 tests, 100% coverage
- SecretDetector: 24 tests

Dependencies:
- @secretlint/node: 11.2.5
- @secretlint/core: 11.2.5
- @secretlint/types: 11.2.5
- @secretlint/secretlint-rule-preset-recommend: 11.2.5

2025-11-25 18:27:27 +05:00

8.6 KiB

Raw Blame History

View Raw

8.6 KiB Raw Blame History

8.6 KiB

Raw Blame History