English
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 1

🔥🔥 I’m mind blown.. A @Netlify customer just accidentally committed a secret in their changes to @github, the automatic Netlify build did secret scanning and stopped the build from going to production automatically. They used our “why did it fail” capability to determine the…

JavaSquip's tweet image. 🔥🔥 I’m mind blown.. A @Netlify customer just accidentally committed a secret in their changes to @github, the automatic Netlify build did secret scanning and stopped the build from going to production automatically. They used our “why did it fail” capability to determine the…
10
7
53
10
13K
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 1

@adocomplete day 1 win 🙌🙌

1
0
2
0
434
EmmettNaughton's profile picture. Co-Parent of @Coder_Dads All Things Technical @KnoCommerce Developer, and Tech Dork. World's Biggest Hype Guy.
emmett naughton
 @EmmettNaughton
Oct 1

this rules sooo much the Netlify logs are so good.

1
0
3
0
94
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 1

Right?! And the list of things we have planned to build on top of it is unbelievable. All killers, no fillers 👊👊

1
0
4
0
87
yenkel's profile picture. vp r&d @okta (@auth0lab), og @auth0. @openfga creator 🚀 startup advisor, investor. 🛠️ 0 to 1. ❤️ to make things scale. 🏀 fan
yenkel
@yenkel
Oct 1

it’s getting real

1
0
1
0
242
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 1
0
0
1
0
152
clarklab's profile picture. I try to make things that are awesome. One half of Superfun. Design engineer. BBQ, games, AI wonk. SXSW, Microsoft, NASDAQ, Blockchain, and other folks you know
Clark Wimberly
@clarklab
Oct 1

I saw this secret key warning pop up the other day, and was SUPER impressed. It turned out to be a false positive (a public key the agent had labeled private) but was happy it caught it anyway. Fed the Netlify warning back to Claude and it updated everything for me.

1
0
5
0
646
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 1

Dude! It’s SUCH a peace of mind.

0
0
2
0
192
pooria_arab's profile picture. AI Builder for Product & Growth | Vibecoder | Top 25 under 25
pooria
@pooria_arab
Oct 2

@JavaSquip does this increase build time and for existing enterprise customers, is this on by default?

1
0
0
0
132
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 2

Secrets scanning? Yes it’s on by default and yes it increases build times… usually by a few milliseconds. But even if it was 30s or more that’s worth it to protect sites. Especially with the age of AI that might mess something up on even preproduction it’s saved countless of…

1
0
2
0
124
revskill's profile picture. I hate technical debts very much. Learning to clean debt out of my life. Author of ReactJS, The Rails Way
Truong Hoang Dung
 @revskill
Oct 2

That means Claude has your secret ?

1
0
0
0
34
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 2

Not necessarily, no. Secrets don’t have to be in plaintext to be exposed. It could be rendering an environment variable that’s only known at site generation time.

0
0
0
0
30
deepakcodes's profile picture. **/= open source. VR & Graphics, AI + ML focused page. Like physics & philosophy.
deep
 @deepakcodes
Oct 2

Nice PR dude, can just use the Claude Security Github Action

1
0
0
0
50
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 2

Sure can! Big fan of that too, use the tools that work for you 👊 AR is set up so the non technical team can also use these tools without needing to know what a CLI is, PRs, etc. we handle the technical bits because we know how to build and run the site as well

1
0
1
0
98
DSEmpire_Jim's profile picture. Dad, husband, music and fantasy sports nut, AWS Certified SRE. Taking donations/side gigs for baby diapers and concert tix
CLT Jim
 @DSEmpire_Jim
Oct 3

Just use pre-commit and it will never get that far 🤦‍♂️

1
0
0
0
33
JavaSquip's profile picture. Trying to make the web better! VP of Applied AI @Netlify by day Indie Hacker by night
Sean Roberts
@JavaSquip
Oct 3

Totally! Though Some stuff is only visible at production build time.. e.g. db passwords and such. Gotta make sure none of it’s there end to end

0
0
2
0
63
MinChonChiSF's profile picture.
Min Chon Chi
 @MinChonChiSF
Oct 2

Good to see automated secret scanning catching accidental commits.

0
0
2
0
21
United States Trends

Something went wrong.


Something went wrong.