sensitive-file/pgpass

PostgreSQL .pgpass

highSensitive filesensitive-file

What it detects

PostgreSQL credential cache (.pgpass). Plain-text host:port:db:user:password lines.

Delete and rotate every password listed.

Path / basename / content-header match. No content body is stored — only the path.

Found a false positive or want this rule tuned? File an issue. You can also suppress per-repo via a .repoguardignore line.