Avoid letting sensitive info appear in your commits.

SecureCommit is a Visual Studio Code extension that helps you avoid letting sensitive info appearing in your commits.

Write a simple comment

Start by writing a simple comment or text next to the line containing the sensitive info you don't want to appear in your next commit.

SecureCommit : ScanWorkspace

SecureCommit : Version

File: Open Recent

Go to Symbol in Workspace...

Git: Clone

View: Toggle Terminal

Debug: Start Debugging

Preferences: Open Settings (UI)

Extensions: Install Extensions

Markdown: Preview

Explorer: Focus on Explorer View

Search: Find in Files

Tasks: Run Build Task

Terminal: Create New Integrated Terminal

Help: About

Run Scan Workspace command

Once you're done writing your code, before you commit your changes, quickly run the Scan Workspace command to find any secrets that shouldn't appear in your commit.

Open the generated file

If any secure-commit text/comment is found anywhere in the workspace, the files containing the text/comment will be added to a generated file SECURE_COMMIT_FLAGGED_FILES.md

Useful tip:

Adding a file or folder to a .gitignore file will prevent the said file/folder to be flagged by the Scan Workspace command.