Sensitive Data & Secrets patterns

Design Partner

This feature is only available under feature flag to Design Partners.

Sensitive data and secrets patterns are core components of Escape's Inventory system, designed to detect and prevent potential data exposures across platforms and environments. This section details their functionality and role in protecting sensitive information.

Overview of Scalars¶

Scalars (sensitive data and secrets patterns) operate by scanning and validating data within the defined exploration scope. They are essential for identifying and mitigating risks in three key areas:

Frontend Leaks: Detecting sensitive data inadvertently exposed in frontend applications
API Leaks: Identifying secrets or sensitive information exposed through APIs
Repository Leaks: Scanning repositories and commit histories to uncover embedded secrets or sensitive data

Preconfigured Scalars¶

Scalars come preconfigured to detect a wide range of sensitive data and secret types, providing robust detection capabilities immediately. This includes API keys, passwords, secure tokens, and more. For detailed information about preconfigured scalars, refer to the Scalar Section of the documentation.

Future Customization Options¶

Configuring Scalar patterns

Customization of sensitive data and secrets patterns is a feature currently under development and is expected to be available soon.

Importance of Sensitive Data & Secrets patterns¶

Implementing sensitive data and secrets patterns is vital for maintaining data integrity and confidentiality. This proactive approach helps organizations:

Prevent security incidents before they occur
Ensure compliance with regulatory requirements
Protect sensitive information effectively

In conclusion, while current scalars effectively safeguard assets through preconfigured settings, upcoming customization capabilities will provide organizations with greater flexibility to adapt patterns as their security needs evolve.