Netlify Secrets Controller provides improved access control, logging safety, and automatic secret scanning.
Secrets marked as 'sensitive' receive strict access policies and are masked in build logs.
The feature set is designed to prevent inadvertent or malicious exposure of sensitive values like passwords or API keys.
Automatic secret scanning occurs post-build to ensure secrets aren't exposed in the repo or build output, blocking the deployment.
Netlify Enterprise customers can use these features by marking environment variables as secrets, with proactive protections enabled automatically.

Netlify is a cloud computing company that provides hosting and backend services for web applications and static websites. Its platform offers a suite of tools that automate code building, deployment, and server management. This enables developers to launch websites quickly by deploying directly from Git repositories. Netlify's features like custom domains, HTTPS, deploy previews, rollbacks, and an ecosystem for plug-ins cater to modern development practices. Additionally, it offers solutions for data unification (Netlify Connect), a frontend cloud (Netlify Core), and a visual editor (Netlify Create) to streamline website updates and content management.

Netlify

Netlify provides global deployment, domain services, and unified web workflows.

Netlify Introduces Secrets Controller for Enhanced Security

Recent Product News