Isixhobo sokuskena esifihlakeleyo somthombo ovulekileyo, Betterleaks, sikhutshiwe ngokusesikweni, sizibeka njengendlalifa ye-Gitleaks yodumo. Desenvolvido ngumyili wokuqala wesixhobo sangaphambili, i-Betterleaks ithembisa ukuba iyakhawuleza kwaye ibhetyebhetye, yazisa imisebenzi ephucukileyo yokufumanisa ulwazi olubuthathaka.
Iprojekthi entsha ibonakala njengenguqu ebalulekileyo kwimeko yokhuseleko lwesicelo, ejolise ukuhlangabezana neemfuno ezikhulayo zezixhobo ezisebenzayo ngakumbi ekuchongeni iimfihlo kwiziseko zekhowudi. Sua uyilo kunye neseti yeempawu ziyilelwe ukoyisa imida yezisombululo esele zikho ngelixa inikezela ngokhuseleko olongezelelweyo.
Ixhaswa yi-Aikido Security, Betterleaks isebenza njengenyathelo lomthombo ovulekileyo ozimeleyo, okhokelwa yimodeli yolawulo loluntu kwaye isasazwe phantsi kwe-MIT License. Indlela ye-Essa ijolise ekuqinisekiseni ukungafihli, intsebenziswano kunye nokuphuculwa rhoqo kwesixhobo luluntu lwabaphuhlisi kunye neengcaphephe zokhuseleko.
Isiqalo seprojekthi ye-Betterleaks
Inyathelo lokuqala lokuphuhlisa i-Betterleaks liye lafumana amandla emva kokuba umenzi wokuqala we-Gitleaks ephulukene nolawulo olupheleleyo kwindawo yokugcina kunye negama leprojekthi yangaphambili. Esse ukubuyisela umva, nangona kulusizi, kuvule ithuba elitsha lokuyila isixhobo esinamandla ngakumbi esilungelelaniswe neemfuno zangoku zemarike.
Umphuhlisi, ngoku odibanisa i-Aikido Security njenge-Chefe ye-Varredura ye-Segredos, uzibophelele ekwakheni esona sixhobo sikhoyo sivulekileyo sokubona imfihlo esikhoyo. Ukutshintshela kwi-Aikido Security yomeleza injongo yokunikezela ngesisombululo esikwinqanaba eliphezulu kukhuseleko lwehlabathi kunye nophuhliso loluntu.
Inguqulelo 1.0 ezintsha zokhuseleko
Ushicilelo lokuqala lwe-Betterleaks sele lubandakanya iimpawu ezininzi eziyahlulayo kwimarike. Isixhobo sasiyilelwe ukunika ubhaqo oluyimfihlo oluchaneke ngakumbi nolubanzi, ukudibanisa ubugcisa bale mihla bokhuseleko kunye neendlela.
Phakathi kwezinto ezintsha eziphambili zenguqulo ye-1.0, oku kulandelayo kuvelele:
–Ukuqinisekiswa kuchazwa yimigaqo:Utiliza ukuya ku-Linguagem ye-Expressão Comum (CEL) yoqinisekiso olubhetyebhetye, olulungiselelwe wena.
–Ukujongwa ngokuFanelekileyo koMqondiso we-BPE:Avalia ukusebenza kwamathokheni okusekwe kwi-Byte Pair Encoding tokenization, ukukhulisa inkqubo yokuchonga.
–Ukufunyaniswa okuzenzekelayo kweemfihlo ezifihliweyo:Identifica ngokuzenzekelayo iimfihlo eziye zafakwa ngokuphindwe kabini nakathathu, zinyusa ukhuseleko.
–Uyilo lwe-Go olusulungekileyo:Garante ukusebenza okuphezulu kunye nozinzo olukhulu lokusebenza.
–Imithetho eyandisiweyo yokufumanisa ababoneleli:Abrange uluhlu olubanzi lweenkonzo kunye namaqonga apho iimfihlo zinokufunyanwa.
–Ukujongwa ngokunxuseneyo kogcino lwe-Git:Permite ukuskena ngaxeshanye koovimba abaninzi, ukukhawulezisa inkqubo.
Ukuhambelana kunye nezalathiso zexesha elizayo
Enye yeentsika ze-Betterleaks igcina ukuhambelana ne-Gitleaks ekhoyo yokuhamba komsebenzi. Isso ithetha ukuba iinketho zomgca womyalelo kunye neefayile zoqwalaselo esele zisetyenzisiwe zinokusebenza ngaphandle kwesidingo sokuguqulwa, ukwenza utshintsho lube lula kubasebenzisi. Além olona khangelo lukhawulezayo lokuskena, oku kuhambelana kobuchule kunciphisa ijiko lokufunda kunye neenzame zokuziqhelanisa.
Iqela lophuhliso sele lichaze isicwangciso esinamabhongo kwiinguqulelo zexesha elizayo ze-Betterleaks. Okulindelekileyo kukubandakanya imisebenzi ephucukileyo, efana nekhowudi yemvelaphi ebanzi yokuskena, ubhaqo oluncediswa yimifuziselo yolwimi olukhulu (LLM), kunye nokurhoxiswa okuzenzekelayo kweemfihlo. Essas uphuculo luthembisa ukunyusa umgangatho wokhuseleko lwemithombo evulelekileyo ngokunikezela ngokhuseleko olusebenzayo ngokuchasene nokuvuza.
Uluntu olusemva kophuhliso
Impumelelo kunye nokuqhubekeka kwe-Betterleaks kuxhomekeke kwintsebenziswano yoluntu olubandakanyekayo kunye neengcaphephe ezaziwayo. Le projekthi sele inenkxaso yabadibanisi abaninzi, abazisa amava nolwazi oluvela kumacandelo ahlukeneyo ukuze baqhubeke bephucula isixhobo.
Abaxhasi abakhoyo baquka i-Richard Gomez, ye-Royal Bank ye-Canada; Braxton Plaxco, ukusuka ku-Red Hat; kunye ne-Ahrav Dutta, ukusuka kwi-Amazon. Ukuthatha inxaxheba kwezi ngcali ezivela kwiinkampani eziphambili kuqinisa ukuthembeka kunye nokubanakho kwe-Betterleaks njengesisombululo esomeleleyo nesithembekileyo sokubhaqwa okuyimfihlo. Ukudityaniswa kwesixhobo kumthombo ovulekileyo wokhuseleko we-ecosystem oxhaswa yi-Aikido Security, equka iiprojekthi ezifana ne-Aikido Safe Chain, Aikido Zen, Aikido Intel kunye ne-Opengrep, yomeleza ngakumbi indawo yayo kwimarike.
Isixhobo esilungiselelwe i-AI ecosystems
Betterleaks ujongano lomgca womyalelo (CLI) yenzelwe ukunceda abaphuhlisi kunye nabadlali bobukrelekrele bokwenziwa. Essa inqaku lenza ukuskena okuzenzekelayo okusebenzayo kwimekobume yophuhliso encediswa yi-AI efana ne-Claude Code, Codex, kunye ne-Cursor.
Ukwandiswa okuqhubekayo kwamandla okubona
Uphinda-phindo olulandelayo lwe-Betterleaks lujolise ekwandiseni amandla ayo okuskena. Serão yazisa iindlela zohlalutyo olunzulu lwekhowudi yomthombo, ukuqinisekisa ukuba akukho mfihlelo engaqatshelwayo, nakwiindawo zokugcina ezinomthamo kunye nomthamo ophezulu.
Ukongeza, abaphuhlisi baphonononga indibaniselwano enzulu ye-Inteligência Artificial itekhnoloji, kunye nobhaqo oluncediswa yiLLM luthembisa ukucokisa ukuchongwa kweepateni kunye neemeko ezinokungahoywa ngeendlela zakwantu. Amandla okwenza iimaphu emvume nawo aya kuphuculwa, abonelele ngokucace ngakumbi ukuba iimfihlo zinokuvezwa phi kwaye njani.
Ugxininiso kuphuculo lwentsebenzo oluqhubekayo luhlala luphambili, luqinisekisa ukuba i-Betterleaks ayiqapheli nje kuphela, kodwa ikwenza oko ngokukhawuleza kunye nezixhobo ezimbalwa zokubala. Este ukuzibophelela kwizikhundla ezintsha Betterleaks njengesixhobo esibalulekileyo sokukhusela ukophulwa kwedatha kwixesha ledijithali.
Iinguqulelo zexesha elizayo kufuneka kwakhona zibandakanye ukurhoxiswa okuzenzekelayo kweemfihlo, uphawu olubalulekileyo lokunciphisa impembelelo yako nakuphi na ukuvuza okuchongiweyo. Essa ukusebenza kwangaphambili kubonisa ukuqhubela phambili okubonakalayo kulawulo lokhuseleko, ukunciphisa ifestile yokuvezwa kunye nomngcipheko kwimibutho.
