Recent Trends in Cloud Computing and Web Engineering (e-ISSN: 3048-6068)

The growing use of CI/CD pipelines has enhanced the speed of software delivery but also brought with it serious security threats, including the inadvertent exposure of sensitive data like API keys, passwords, and tokens. Current detection tools tend to lack real-time integration, visualization, and automation, thus being inefficient in continuous security monitoring. SafePipe is an open-source and lightweight security framework that identifies and prevents secret leakage during code deployment. It combines automated scanning of files, JSON reporting, and Streamlit-powered visualization dashboard that gives clear results to developers. Its modular architecture supports easy CI/CD integration with less configuration and no vendor lock-in. Experimental tests demonstrate that it detects frequent secret patterns with high accuracy and efficiency. SafePipe thus presents a functional, developer-friendly, and cost- effective solution to pipeline security that can be adopted both in academic research and industrial DevSecOps settings.

J. Han and H. Li, “A Survey of Secret Detection in CI/CD Pipelines,” IEEE Transactions on Software Engineering, vol. 50, no. 1, pp. 1-15, Jan. 2024.

Y. Zhang, M. Wen, and X. Xu, “Examining Secret Leakage in Public GitHub Repositories,” in Proc. 2023 IEEE 32nd International Symposium on Software Reliability Engineering (ISSRE), Oct. 2023, pp. 309-320.

S. R. Kim and E. J. Park, “Automated Secret Management in CI/CD using AI-driven Entropy

Analysis,” Journal of Computer Security, vol. 35, no. 2, pp. 45-60, Feb. 2024.

A. A. Mitseva et al., "Automated Secret Management in the Wild: A Case Study on GitHub Actions," in Proc. 2023 IEEE European Symposium on Security and Privacy (EuroS&P), Jun. 2023, pp. 680-697.

D. Lee and M. G. Yoon, “Real-time Secret Detection in Git Commits using Pattern Matching and

Machine Learning,” IEEE Security & Privacy, vol. 22, no. 3, pp. 78-85, Mar. 2024.

T. C. Chan and B. J. Wu, “Harnessing AI: Enhancing Sensitive Information Detection in CI/CD Pipelines for Secure Software Development,” International Journal of Computer Engineering & Technology, vol. 16, no. 1, pp. 3062-3072, Feb. 2025.

M. Zahedi, M. A. Babar, and C. Treude, “An Empirical Study of Security Issues in Container- Based CI/CD Pipeline,” in Proc. 2023 IEEE/ACM 43rd International Conference on Software Engineering: Software Engineering in Practice (ICSE-SEIP), May 2023, pp. 38-47.

S. Chen and X. Liu, “A Multi-Method Approach for Early Detection of Hard-Coded Secrets i

Software Development,” International Scientific Journal of Engineering and Management, vol. 3, no. 12, pp. 1-6, Dec. 2024.

A. Gupta, R. Kumar, and S. V. Sharma, “Securing CI/CD Pipelines: Automating the Detection of Misconfigurations and Integrating Security Tools,” in Proc. 2023 International Conference on Computing, Communication, and Security (ICCCS), Oct. 2023, pp. 1-6.

S. E. L. M. D. Silva, L. V. N. Da Costa, and A. C. T. De Oliveira, "A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing," in Proc. 2024 16th International Conference on Knowledge Management and Information Sharing (KMIS), Nov. 2024, pp. 107-117.

R. Karanam, "Securing CI/CD Pipelines: Strategies for Mitigating Risks in Modern Software Delivery," International Research Journal of Modernization in Engineering Technology and Science, vol. 6, no. 3, pp. 2325-2330, Mar. 2024.