steampipe plugin install francois2metz/gitguardian

GitGuardian + Steampipe

GitGuardian is a secret scanner of GitHub or GitLab commits.

Steampipe is an open source CLI to instantly query cloud APIs using SQL.

For example:

select
id,
date,
status
from
gitguardian_secret_incident;
+---------+----------------------+-----------+
| id | date | status |
+---------+----------------------+-----------+
| 4460178 | 2022-09-16T08:48:58Z | IGNORED |
| 4117416 | 2022-08-03T09:06:36Z | IGNORED |
| 3793634 | 2022-06-22T14:19:03Z | TRIGGERED |
| 2832751 | 2022-03-07T10:06:53Z | TRIGGERED |
| 926032 | 2021-12-14T15:14:40Z | TRIGGERED |
| 926031 | 2021-12-14T15:14:40Z | TRIGGERED |
+---------+----------------------+-----------+

Documentation

Get started

Install

Download and install the latest GitGuardian plugin:

steampipe plugin install francois2metz/gitguardian

Configuration

Installing the latest gitguardian plugin will create a config file (~/.steampipe/config/gitguardian.spc) with a single connection named gitguardian:

connection "gitguardian" {
plugin = "francois2metz/gitguardian"
# Create a personal access token at: https://dashboard.gitguardian.com/api
# Scope:
# - incidents:read
# - audit_logs:read
# - members:read
# token = ""
}

You can also use environment variables:

  • GITGUARDIAN_TOKEN: Your GitGuardian API Key

Get Involved