Per Bleeping Computer, a new open-source tool named Betterleaks has been released, designed to scan directories, files, and Git repositories for sensitive information. This tool aims to identify and protect credentials, API keys, and other secrets that developers may accidentally expose in their code.Betterleaks is presented as an advanced successor to the popular Gitleaks tool, developed by the same team and supported by Aikido. It utilizes Common Expression Language (CEL) for rule-defined validation and employs token efficiency scanning, achieving a recall rate of 98.6% on the CredData dataset, significantly higher than entropy-based methods.The tool is implemented in pure Go, eliminating dependencies on CGO or Hyperscan, and automatically handles encoded secrets. It also features an expanded rule set for more providers and parallelized Git scanning for faster analysis. Future updates are planned to include support for additional data sources, LLM-assisted analysis, and automatic secret revocation.Source: Bleeping Computer
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds





