| 12345678910111213141516171819202122232425 |
- package rules
- import (
- "github.com/zricethezav/gitleaks/v8/cmd/generate/config/utils"
- "github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
- "github.com/zricethezav/gitleaks/v8/config"
- "github.com/zricethezav/gitleaks/v8/regexp"
- )
- func HarnessApiKey() *config.Rule {
- // Define rule for Harness Personal Access Token (PAT) and Service Account Token (SAT)
- r := config.Rule{
- Description: "Identified a Harness Access Token (PAT or SAT), risking unauthorized access to a Harness account.",
- RuleID: "harness-api-key",
- Regex: regexp.MustCompile(`(?:pat|sat)\.[a-zA-Z0-9_-]{22}\.[a-zA-Z0-9]{24}\.[a-zA-Z0-9]{20}`),
- Keywords: []string{"pat.", "sat."},
- }
- // Generate a sample secret for validation
- tps := utils.GenerateSampleSecrets("harness", "pat."+secrets.NewSecret(utils.AlphaNumeric("22"))+"."+secrets.NewSecret(utils.AlphaNumeric("24"))+"."+secrets.NewSecret(utils.AlphaNumeric("20")))
- tps = append(tps, utils.GenerateSampleSecrets("harness", "sat."+secrets.NewSecret(utils.AlphaNumeric("22"))+"."+secrets.NewSecret(utils.AlphaNumeric("24"))+"."+secrets.NewSecret(utils.AlphaNumeric("20")))...)
- // validate the rule
- return utils.Validate(r, tps, nil)
- }
|
