Document Details

Secrets Best Practices
Home / Scan #240 / Secrets Best Practices
Sad Tux - Windows bias detected
This page contains Windows bias

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.
GitHub View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types
windows_first
missing_linux_example
windows_tools
Summary
The documentation page demonstrates a Windows bias by exclusively referencing Azure and Microsoft-centric tools and patterns, with examples and links focused on Windows environments (e.g., Azure Key Vault, Azure Managed HSM, Azure role-based access control, Azure DevOps Credential Scanner). There are no Linux-specific examples, tools, or patterns mentioned, nor is there guidance for non-Windows platforms. Service-specific best practices reference Windows-centric technologies (such as Azure PowerShell and SQL Server on Azure VMs), and Linux alternatives or parity are not addressed.
Recommendations
  • Include examples and guidance for Linux environments, such as using environment variables, secret management tools (e.g., HashiCorp Vault, GnuPG, sops), and Linux command-line utilities.
  • Provide parity for secret scanning tools by mentioning open-source or Linux-native options (e.g., truffleHog, git-secrets) alongside Azure DevOps Credential Scanner.
  • Reference cross-platform automation and scripting options (e.g., Bash, Python scripts) in addition to or instead of Azure PowerShell.
  • Add documentation links and examples for managing secrets in Linux-based Azure services (e.g., Azure Database for PostgreSQL, AKS) using Linux tools and workflows.
  • Explicitly state platform-agnostic best practices and clarify where recommendations apply to both Windows and Linux, or provide separate guidance for each.
GitHub Create Pull Request

Scan History

Date Scan Status Result
2026-01-14 00:00 #250 in_progress Clean Clean
2026-01-13 00:00 #246 completed Biased Biased
2026-01-11 00:00 #240 completed Biased Biased
2026-01-10 00:00 #237 completed Biased Biased
2026-01-09 00:34 #234 completed Biased Biased
2026-01-08 00:53 #231 completed Biased Biased
2026-01-06 18:15 #225 cancelled Clean Clean
2025-08-17 00:01 #83 cancelled Clean Clean
2025-07-13 21:37 #48 completed Clean Clean
2025-07-12 23:44 #41 cancelled Biased Biased