Kurt Shintaku's Blog

Let GitHub do the hard work of ensuring that tokens, private keys, and other code secrets are not exposed in your repository through GitHub Secret Scanning.

Secret scanning alerts for users are available for free on all public repositories. Organizations using GitHub Enterprise Cloud with a license for GitHub Advanced Security can also enable secret scanning alerts for users on their private and internal repositories. For more information, see "About secret scanning" and "About GitHub Advanced Security."

• Proactively prevent secret leaks with GitHub Advanced Security secret scanning
  https://github.blog/2022-04-04-push-protection-github-advanced-security/

In the meantime…

HOW TO REMOVE CREDENTIALS FROM YOUR AZURE APPLICATION CODE
Here’s instruction on how to removing credentials (where possible) when dealing with Azure application development:

• Getting rid of credentials in Azure – Part 1 (microsoft.com)
• Getting rid of credentials in Azure – Part 2 (EasyAuth) (microsoft.com)
• Getting rid of credentials in Azure – Part 3 (EasyAuth & Managed Identity) (microsoft.com)