[high] gitleaks: Secret detected: Detected a Generic API Key, potentially exposing access to various services and sensitive operations. #40

New Issue

sharang · 2026-03-11T15:52:43Z

sharang commented

2026-03-11 15:52:43 +00:00

high Finding

Scanner: gitleaks
Severity: high
Rule: generic-api-key

Description

Potential secret (generic-api-key) found in src/app.rs:71. Match: a-project-key": "a04b8cf1-9177-42ce-8a7b-084f38b99799"

Location

File: src/app.rs (line 71)

Code

a-project-key": "a04b8cf1-9177-42ce-8a7b-084f38b99799"

Remediation

Remove the hardcoded API key from src/app.rs line 71. Move the key to a secure configuration management system or environment variables. Consider using a secrets management tool like HashiCorp Vault, AWS Secrets Manager, or similar.

Fingerprint: 6165a41462d4e6a772e9016957c308d0e915650d326db086c2a490dcaeaa16db
Generated by compliance-scanner

Labels: severity:high, scanner:gitleaks, compliance-scanner

## high Finding **Scanner:** gitleaks **Severity:** high **Rule:** generic-api-key ### Description Potential secret (generic-api-key) found in src/app.rs:71. Match: a-project-key": "a04b8cf1-9177-42ce-8a7b-084f38b99799" ### Location **File:** `src/app.rs` (line 71) ### Code ``` a-project-key": "a04b8cf1-9177-42ce-8a7b-084f38b99799" ``` ### Remediation Remove the hardcoded API key from src/app.rs line 71. Move the key to a secure configuration management system or environment variables. Consider using a secrets management tool like HashiCorp Vault, AWS Secrets Manager, or similar. --- *Fingerprint:* `6165a41462d4e6a772e9016957c308d0e915650d326db086c2a490dcaeaa16db` *Generated by compliance-scanner* **Labels:** severity:high, scanner:gitleaks, compliance-scanner

Sign in to join this conversation.

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: sharang/certifai#40