1 an în urmă · 86fecfb2da
--- a/cmd/generate/config/rules/gitlab.go
+++ b/cmd/generate/config/rules/gitlab.go
@@ -120,14 +120,14 @@ func GitlabPatRoutable() *config.Rule {
 
															 		RuleID:      "gitlab-pat-routable",
														
 
															 		Description: "Identified a GitLab Personal Access Token (routable), risking unauthorized access to GitLab repositories and codebase exposure.",
														
 
															 		Regex:       regexp.MustCompile(`glpat-[0-9a-zA-Z_-]{27,300}\.[0-9a-z]{2}[0-9a-z]{7}`),
														
 
															-		Entropy:     3,
														
 
															+		Entropy:     4,
														
 
															 		Keywords:    []string{"glpat-"},
														
 
															 	}
														
 
															 	// validate
														
 
															 	tps := utils.GenerateSampleSecrets("gitlab", "glpat-"+secrets.NewSecret(utils.AlphaNumeric("27"))+"."+secrets.NewSecret(utils.AlphaNumeric("2"))+secrets.NewSecret(utils.AlphaNumeric("7")))
														
 
															 	fps := []string{
														
 
															-		"glpat-XXXXXXXXXXXXXXXXXXX",
														
 
															+		"glpat-xxxxxxxx-xxxxxxxxxxxxxxxxxx.xxxxxxxxx",
														
 
															 	}
														
 
															 	return utils.Validate(r, tps, fps)
														
 
															 }
														
--- a/config/gitleaks.toml
+++ b/config/gitleaks.toml
@@ -2141,7 +2141,7 @@ keywords = ["glpat-"]
 
															 id = "gitlab-pat-routable"
														
 
															 description = "Identified a GitLab Personal Access Token (routable), risking unauthorized access to GitLab repositories and codebase exposure."
														
 
															 regex = '''glpat-[0-9a-zA-Z_-]{27,300}\.[0-9a-z]{2}[0-9a-z]{7}'''
														
 
															-entropy = 3
														
 
															+entropy = 4
														
 
															 keywords = ["glpat-"]
														
 
															 [[rules]]