Second Brain

❯

❯

cleanup 2026 04 17 conversation flush bulk

❯

❯

❯

secret scanner flags test passwords without constant label

secret-scanner-flags-test-passwords-without-constant-label

Apr 17, 20261 min read

ops/security
x/claude-code

secret-scanner-flags-test-passwords-without-constant-label

Integration test files that contain plain password strings (e.g. 'AdminPass123!') trigger the secret scanner and block commits. The workaround is to assign them to a labeled constant (e.g. TEST_PASSWORD = 'AdminPass123!') so the scanner recognises them as test fixtures rather than credential leaks.

Related

spec-reviewer-blocks-on-os-system-in-test-code
r-same-auth-constant-time-generic-errors-required
dual-claude-json-sync-invariant-session-user-determines-acti
r-dash-azure-ad-deferred-local-auth-v1-stack
alembic-ini-db-url-blocks-commit-use-env-var
test-password-strings-trigger-secret-scanner-false-positives
secret-scanner-flags-test-passwords-use-labeled-constants
integration-test-passwords-flag-secret-scanner
test-credential-literals-flagged-by-secret-scanner
test-fixture-passwords-flagged-by-secret-scanner

Graph View

secret-scanner-flags-test-passwords-without-constant-label
Related

Backlinks

alembic-ini-db-url-blocks-commit-use-env-var
dual-claude-json-sync-invariant-session-user-determines-acti
integration-test-passwords-flag-secret-scanner
r-dash-azure-ad-deferred-local-auth-v1-stack
test-credential-literals-flagged-by-secret-scanner
secret-scanner-flags-test-passwords-use-labeled-constants
spec-reviewer-blocks-on-os-system-in-test-code
test-fixture-passwords-flagged-by-secret-scanner
test-password-strings-trigger-secret-scanner-false-positives
r-same-auth-constant-time-generic-errors-required

Created with Quartz v4.5.2 © 2026

CIOS
Mission Control