Skip to content

Feature/lab3#501

Open
MMenshikh wants to merge 9 commits intoinno-devops-labs:mainfrom
MMenshikh:feature/lab3
Open

Feature/lab3#501
MMenshikh wants to merge 9 commits intoinno-devops-labs:mainfrom
MMenshikh:feature/lab3

Conversation

@MMenshikh
Copy link

@MMenshikh MMenshikh commented Mar 3, 2026

Goal

The goal of this PR is to implement and demonstrate secure development practices:

  • SSH commit signing for ensuring commit authenticity and integrity
  • Pre-commit secret scanning to prevent accidental leaks of sensitive data

Changes

  • Added SSH commit signing
  • Configured Git to use SSH for signing commits
  • Implemented a pre-commit hook for secret scanning
  • Tested the pre-commit hook with fake AWS keys

Testing

  • SSH Commit Signing: Verified commits are signed and show a "Verified" badge in GitHub/GitLab
  • Pre-commit Secret Scanning: Added a fake AWS key to test the hook; commit was blocked until the secret was removed

Artifacts & Screenshots

  • Screenshot of the "Verified" badge for signed commits
  • Logs from the pre-commit hook blocking a commit with a secret

Checklist

  • Clear PR title
  • Documentation updated if needed
  • No secrets or large temporary files

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@MMenshikh