Terraform Cloud - GitHub Token Scanning

Sebastian | Terraform Support

September 27, 2024 03:15
Updated

HashiCorp participates in the GitHub token scanning project for Terraform Cloud (TFC). Whenever GitHub detects a token that looks like a TFC API token, it notifies HashiCorp of the token and location. HashiCorp automatically revokes the tokens that GitHub detects in order to protect customers. Customers will be notified over email about the action and the location of the token found on the public internet.

Terraform Cloud Agents – Required Domains for Egress Traffic When Wildcards Are Restricted.
How to Configure HCP Terraform Agent with Proxy and Custom CA Certificate
Newly Integrated Terraform Cloud GitHub App Installation Does Not Appear on the GitHub Organizations List
Restricting State Access Not Working Due to Additive Effective Permissions
Internal error: SIC-001. Failed to ingress entity: AgentJob for workload cv-xxxxxxxxxx encountered an error.
Resolving “no mutual signature supported” SSH authentication error between HCP Terraform and Bitbucket Data Center
Difference Between Edit Variable Set and Remove Variable Set in HCP Terraform
Preventing Exposure of Sensitive Environment Variables in HCP Terraform Runs on HCP Terraform Agents
How to run Terraform Actions using API
Viewing OPA Policy Evaluation Results Outside the HCP Terraform UI

Articles in this section

Related articles