I've been researching Static Code Analysis and available implementations. One feature that'd be nice is flagging of secrets, API keys, and passwords. Amazon Macie mentions this as a use case but appears only to work with data in an S3 bucket [1].
After browsing available AWS products, nothing sticks out to me as an obvious solution. I saw Sonar but their TypeScript support appears to be less effective - which is expected to some degree since it's originally a Java tool [2].
Is there an AWS solution to this? Or do you have a recommendation?
Thanks.
PS - this would of course be in addition to our existing code review process.
1. https://aws.amazon.com/macie/?nc2=h_m1
2. https://www.sonarsource.com/products/sonarqube/