I thought it would be appropriate to start at the beginning of the pipeline, which means the source control. These days it’s all about git, and to be honest, SVN and the like are pretty much dead when it comes to new projects, so git it is.
As opposed to most source control applications, git has a few characteristics that are worth noting:
- Git is a distributed source control system
- Every client has the complete history of the code locally
- The project can have multiple remote servers
While the above gives us much flexibility and can save our jobs at times, it also gives us a few headaches.
One thing to remember is that git keeps history, and even if you delete something and commit it, earlier versions will contain the deleted content.
- Commit clear text production passwords
- Commit api keys
- Commit certificates
- You get the general theme
However what if you did? The articles below will show you a few tricks on how to scan your repository and remove unwanted information from the history.
You will be amazed of what you can find on github and bitbucket. The truth is that developers just forget about such things and just publish them to public repositories.