pre-commit by Yelp VS EnvKey

# See https://pre-commit.com for more information # See https://pre-commit.com/hooks.html for more hooks Repos: - repo: https://github.com/pre-commit/pre-commit-hooks rev: v3.2.0 hooks: - id: trailing-whitespace - id: end-of-file-fixer - id: check-yaml - id: check-toml - id: check-added-large-files - repo: local hooks: - id: tox lint name: tox-validation ... - Source: dev.to / 5 months ago

Pre-commit hooks act as the first line of defense in maintaining code quality, seamlessly integrating with linters and code formatters. They automatically execute these tools each time a developer tries to commit code to the repository, ensuring the code adheres to the project's standards. If the hooks detect issues, the commit is paused until the issues are resolved, guaranteeing that only code meeting quality... - Source: dev.to / 6 months ago

Https://pre-commit.com/ can (and probably should) be used with any editor for such things. - Source: Hacker News / 6 months ago

Pre-commit Hooks: Pre-commit is a tool that can be set up to enforce coding rules and standards before you commit your changes to your code repository. This ensures that you can't even check in (commit) code that doesn't meet your standards. This allows a code reviewer to focus on the architecture of a change while not wasting time with trivial style nitpicks. - Source: dev.to / 7 months ago

Ah, fair enough! On my team we use pre-commit[0] a lot. I guess I would define the history to be something like "has this commit ever been run through our pre-commit hooks?". If you rewrite history, you'll (usually) produce commits that have not been through pre-commit (and they've therefore dodged a lot of static checks that might catch code that wasn't working, at that point in time). That gives some manner of... - Source: Hacker News / 8 months ago

You can check out EnvKey[1] as another option (I’m the founder). We have similarly simple UX but are more robust on security. Browser-based end-to-end encryption is a bit of a fig leaf—it doesn’t protect against insider threats. 1 - https://envkey.com. - Source: Hacker News / 12 months ago

Hey, congratulations on the launch. How does this compare to EnvKey[1]? [1]: https://envkey.com. - Source: Hacker News / about 1 year ago

In most cases, attempting to roll your own secrets management (or just ignoring secrets management entirely) will end up spraying access across all kinds of third party services (usually in plain text), as engineers resort to sharing secrets via email, chat, file sharing, and other tools to get their work done. The cost/benefit/risk calculation to doing this yourself isn't good. Using open... - Source: Hacker News / over 1 year ago

If anyone out there is using environment variables currently, is interested a quick path to plugging the leaks in their secrets management, check out EnvKey[1] (disclaimer: I'm the founder). Because EnvKey integrates tightly with environment variables, no app code changes are needed to switch, so it only takes a minute or two to import/integrate a typical app. EnvKey is designed to help avoid incidents exactly... - Source: Hacker News / over 1 year ago

If anyone’s looking for something more secure than vanilla env vars but simpler than Vault, you could check out EnvKey[1]. Disclaimer: I’m the founder. It’s end-to-end encrypted, cloud or self-hosted, and very quick to integrate. 1 - https://envkey.com. - Source: Hacker News / almost 2 years ago