Confidential Information

Nullify scans for confidential information across your codebase on every commit and pull request.

Detected confidential information will be flagged as a secrets finding in the Nullify dashboard.

Detectable Information Categories

Nullify can detect the following categories of Personally Identifiable Information in English:

Personal Information

Surnames
Email addresses
Phone numbers
Addresses
Date of birth

Financial Information

Credit card numbers

Location Information

Location data

How does it work?

Nullify scans for diffs in your codebase to detect the presence of confidential information.

For example, we create a sample SQL query (create.sql) that seeds a database with personal information (emails, credit card, names, etc.) and commit this to a repository:

Nullify will sample this diff, detect the presence of personal information, and flag it as a secrets finding, with the category of Personal Information:

Note: all data in screenshots is fictional and generated from Fake Name Generator.

When Nullify detects PII, a new finding will be created in the Nullify dashboard with the affected line of code highlighted.

This feature is currently in alpha testing and available upon request.

PreviousSupported Secret Types NextWeb App Penetration Testing

Last updated 7 months ago

Was this helpful?