| 12345678910111213141516171819202122232425262728293031323334353637383940 |
- package rules
- import (
- "github.com/zricethezav/gitleaks/v8/cmd/generate/config/utils"
- "github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
- "github.com/zricethezav/gitleaks/v8/config"
- )
- func AlibabaAccessKey() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "alibaba-access-key-id",
- Description: "Detected an Alibaba Cloud AccessKey ID, posing a risk of unauthorized cloud resource access and potential data compromise.",
- Regex: utils.GenerateUniqueTokenRegex(`LTAI(?i)[a-z0-9]{20}`, false),
- Entropy: 2,
- Keywords: []string{"LTAI"},
- }
- // validate
- tps := []string{
- "alibabaKey := \"LTAI" + secrets.NewSecret(utils.Hex("20")) + "\"",
- }
- return utils.Validate(r, tps, nil)
- }
- // TODO
- func AlibabaSecretKey() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "alibaba-secret-key",
- Description: "Discovered a potential Alibaba Cloud Secret Key, potentially allowing unauthorized operations and data access within Alibaba Cloud.",
- Regex: utils.GenerateSemiGenericRegex([]string{"alibaba"}, utils.AlphaNumeric("30"), true),
- Entropy: 2,
- Keywords: []string{"alibaba"},
- }
- // validate
- tps := utils.GenerateSampleSecrets("alibaba", secrets.NewSecret(utils.AlphaNumeric("30")))
- return utils.Validate(r, tps, nil)
- }
|
