Developer Protection feature of Endpoint Security Client is aimed to prevent leakage of sensitive information (RSA keys, passwords, access tokens) through Git version control system. It also can warn user when vulnerable external dependencies are used in AWS lambda.
Developer Protection intercepts "git commit" commands issued by user and scan all modified files in a Git repository.
The feature is disabled by default.
Enabling Developer Protection feature.
The feature can operate in two modes: "Detect" and "Prevent".
Add "developer protection prevent mode" to Application control policy name to enable "Prevent" mode. Save and install policy.
Add "developer protection detect mode" to Application control policy name to enable “Detect” mode. Save and install policy."Detect" mode
User is warned only. Commit continues once "Ok" button is pressed.
User is warned. “Cancel” prevents a commit. "More Options…" allows to provide a justification and continue a commit.
Administrator can observe all "Prevent" and "Detect" events occurred in organization by examining audit logs of Application Control blade.
This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.