Managing secrets like API keys in Python - Why are so many devs still hardcoding secrets?

This page summarizes the projects mentioned and recommended in the original post on /r/Python
Gitignore Credentials Git Devsecops Penetration Testing

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • gitz

    🗜 Tiny useful git commands, some dangerous 🗜

    • When I develop a big feature, I do it on a private branch, and then I commit and push an "anonymous" commit (using this) whenever I have made any progress.

  • CryptMasterServer

    A highly secure API for controlling keys to sensitive databases

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • gitignore

    A collection of useful .gitignore templates

    • But beyond that I’ve taken to using GitHub’s default gitignore for python (they have them per language) and tweaking it as needed beyond it.

  • noseyparker

    Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

  • git-secrets

    Prevents you from committing secrets and credentials into git repositories

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts