Merge branch 'tmccaslin-master-patch-26543' into 'master'

Documentation: Post-processing secret detection See merge request gitlab-org/gitlab!47890

Merge branch 'tmccaslin-master-patch-26543' into 'master'
Documentation: Post-processing secret detection See merge request gitlab-org/gitlab!47890
84e1888b · Russell Dickenson · 788e009d · 4443c084 · 84e1888b
Commit 84e1888b authored Nov 17, 2020 by Russell Dickenson
Hide whitespace changes
Inline Side-by-side

Showing with 12 additions and 0 deletions

doc/user/application_security/secret_detection/index.md doc/user/application_security/secret_detection/index.md +12 -0

No files found.
--- a/doc/user/application_security/secret_detection/index.md
+++ b/doc/user/application_security/secret_detection/index.md
@@ -126,6 +126,18 @@ The results are saved as a
 that you can later download and analyze. Due to implementation limitations, we
 always take the latest Secret Detection artifact available.

+### Post-processing
+
+> [Introduced](https://gitlab.com/groups/gitlab-org/-/epics/46390) in GitLab 13.6.
+
+Upon detection of a secret, GitLab supports post processing hooks. These can be used to take actions like notifying the cloud service who issued the secret. The cloud provider can confirm the credentials and take remediation actions like revoking or reissuing a new secret and notifying the creator of the secret. Post-processing workflows vary by supported cloud providers. 
+
+GitLab currently supports post-processing for following service providers:
+
+- Amazon Web Services (AWS)
+
+Third party cloud and SaaS providers can [express integration interest by filling out this form](https://forms.gle/wWpvrtLRK21Q2WJL9). Learn more about the [techincal details of post-processing secrets](https://gitlab.com/groups/gitlab-org/-/epics/4639). 
+
 ### Customizing settings

 The Secret Detection scan settings can be changed through [environment variables](#available-variables)