há 3 anos atrás · 3f0293dab0
--- a/cmd/generate/config/main.go
+++ b/cmd/generate/config/main.go
@@ -141,6 +141,7 @@ func main() {
 
				 	configRules = append(configRules, rules.SquareSpaceAccessToken())
			
 
				 	configRules = append(configRules, rules.SumoLogicAccessID())
			
 
				 	configRules = append(configRules, rules.SumoLogicAccessToken())
			
 
				+	configRules = append(configRules, rules.TeamsWebhook())
			
 
				 	configRules = append(configRules, rules.TravisCIAccessToken())
			
 
				 	configRules = append(configRules, rules.Twilio())
			
 
				 	configRules = append(configRules, rules.TwitchAPIToken())
			
--- a/cmd/generate/config/rules/teams.go
+++ b/cmd/generate/config/rules/teams.go
@@ -0,0 +1,29 @@
 
				+package rules
			
 
				+
			
 
				+import (
			
 
				+	"regexp"
			
 
				+
			
 
				+	"github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
			
 
				+	"github.com/zricethezav/gitleaks/v8/config"
			
 
				+)
			
 
				+
			
 
				+func TeamsWebhook() *config.Rule {
			
 
				+	// define rule
			
 
				+	r := config.Rule{
			
 
				+		Description: "Microsoft Teams Webhook",
			
 
				+		RuleID:      "microsoft-teams-webhook",
			
 
				+		Regex: regexp.MustCompile(
			
 
				+			`https:\/\/[a-z0-9]+\.webhook\.office\.com\/webhookb2\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}@[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}\/IncomingWebhook\/[a-z0-9]{32}\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}`),
			
 
				+		Keywords: []string{
			
 
				+			"webhook.office.com",
			
 
				+			"webhookb2",
			
 
				+			"IncomingWebhook",
			
 
				+		},
			
 
				+	}
			
 
				+
			
 
				+	// validate
			
 
				+	tps := []string{
			
 
				+		"https://mycompany.webhook.office.com/webhookb2/" + secrets.NewSecret(`[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}@[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}\/IncomingWebhook\/[a-z0-9]{32}\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}`), // gitleaks:allow
			
 
				+	}
			
 
				+	return validate(r, tps, nil)
			
 
				+}
			
--- a/config/gitleaks.toml
+++ b/config/gitleaks.toml
@@ -2227,6 +2227,14 @@ keywords = [
 
				     "messagebird","message-bird","message_bird",
			
 
				 ]
			
 
				 
			
 
				+[[rules]]
			
 
				+description = "Microsoft Teams Webhook"
			
 
				+id = "microsoft-teams-webhook"
			
 
				+regex = '''https:\/\/[a-z0-9]+\.webhook\.office\.com\/webhookb2\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}@[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}\/IncomingWebhook\/[a-z0-9]{32}\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}'''
			
 
				+keywords = [
			
 
				+    "webhook.office.com","webhookb2","incomingwebhook",
			
 
				+]
			
 
				+
			
 
				 [[rules]]
			
 
				 description = "Netlify Access Token"
			
 
				 id = "netlify-access-token"