Nightfall’s Radar Simplifies Secrets Detection with New Features

Last year we introduced Nightfall Radar to the GitHub marketplace. Radar, a solution designed to detect committed secrets within repositories, leverages machine learning to avoid the common pitfalls that plague open source tools currently on the market. Radar has been proven to address the need for repo scans that are fast, accurate, and reliable by teams both small and at the enterprise level. We’ve been hard at work adding meaningful additions to the platform and are proud to announce these changes as well as how they’ll elevate user experience.

Ignore tokens in repositories with Radar

In order to allow users to have a higher level of control over what Radar scans, our team recently introduced an “allow list” feature to Radar. This will allow you to ignore objects at the token level (where the Key Type is api_key) as well as at the file/directory level (where the Key Type is subpath). The allow list is useful for excluding content that is already known not to be sensitive, like test tokens within your repository. The full functionality of Radar’s allow list feature has been detailed here.

Automatically scan all of your organization’s repositories

If you have a paid Nightfall account, from your dashboard you can create Workflows that will allow you to scan every repository within a GitHub organization. These workflows can be generated on demand or conducted automatically on a routine schedule, allowing you to conduct periodic audits of committed code or any diffs. To see this feature in action, feel free to schedule a demo with us. It’s free to get started with Radar too – sign up here.

Scan pull requests pre-merge

With the Nightfall DLP GitHub Action, you can now scan for credentials, secrets, PII, credit card numbers, and more upon a pull request before it’s merged into the base branch. The GitHub Action is powered by the Nightfall API, which exposes all of our detectors to you as code. It’s free to get started with the API and the GitHub Action.

Organization-wide collaboration and controls

You can now also set up a Radar organization to collaborate on scan results across your team. Export easily to CSV or via our REST API, and customize your notification preferences to meet your needs. We’re excited about the future of DLP on GitHub and are looking forward to bringing you updates about the Nightfall DLP platform. To learn more about Radar, read our documentation and sign up for Radar here.

Share this post: