| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253 |
- package rules
- import (
- "github.com/zricethezav/gitleaks/v8/cmd/generate/config/utils"
- "github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
- "github.com/zricethezav/gitleaks/v8/config"
- "github.com/zricethezav/gitleaks/v8/regexp"
- )
- func FlutterwavePublicKey() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "flutterwave-public-key",
- Description: "Detected a Finicity Public Key, potentially exposing public cryptographic operations and integrations.",
- Regex: regexp.MustCompile(`FLWPUBK_TEST-(?i)[a-h0-9]{32}-X`),
- Entropy: 2,
- Keywords: []string{"FLWPUBK_TEST"},
- }
- // validate
- tps := utils.GenerateSampleSecrets("flutterwavePubKey", "FLWPUBK_TEST-"+secrets.NewSecret(utils.Hex("32"))+"-X")
- return utils.Validate(r, tps, nil)
- }
- func FlutterwaveSecretKey() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "flutterwave-secret-key",
- Description: "Identified a Flutterwave Secret Key, risking unauthorized financial transactions and data breaches.",
- Regex: regexp.MustCompile(`FLWSECK_TEST-(?i)[a-h0-9]{32}-X`),
- Entropy: 2,
- Keywords: []string{"FLWSECK_TEST"},
- }
- // validate
- tps := utils.GenerateSampleSecrets("flutterwavePubKey", "FLWSECK_TEST-"+secrets.NewSecret(utils.Hex("32"))+"-X")
- return utils.Validate(r, tps, nil)
- }
- func FlutterwaveEncKey() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "flutterwave-encryption-key",
- Description: "Uncovered a Flutterwave Encryption Key, which may compromise payment processing and sensitive financial information.",
- Regex: regexp.MustCompile(`FLWSECK_TEST-(?i)[a-h0-9]{12}`),
- Entropy: 2,
- Keywords: []string{"FLWSECK_TEST"},
- }
- // validate
- tps := utils.GenerateSampleSecrets("flutterwavePubKey", "FLWSECK_TEST-"+secrets.NewSecret(utils.Hex("12")))
- return utils.Validate(r, tps, nil)
- }
|
