| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 |
- package rules
- import (
- "regexp"
- "github.com/zricethezav/gitleaks/v8/config"
- )
- func GitHubPat() *config.Rule {
- // define rule
- r := config.Rule{
- Description: "GitHub Personal Access Token",
- RuleID: "github-pat",
- Regex: regexp.MustCompile(`ghp_[0-9a-zA-Z]{36}`),
- Keywords: []string{"ghp_"},
- }
- // validate
- tps := []string{"gihubPAT := \"ghp_" + sampleAlphaNumeric36Token + "\""}
- return validate(r, tps)
- }
- func GitHubOauth() *config.Rule {
- // define rule
- r := config.Rule{
- Description: "GitHub OAuth Access Token",
- RuleID: "github-oauth",
- Regex: regexp.MustCompile(`gho_[0-9a-zA-Z]{36}`),
- Keywords: []string{"gho_"},
- }
- // validate
- tps := []string{"gihubAuth := \"gho_" + sampleAlphaNumeric36Token + "\""}
- return validate(r, tps)
- }
- func GitHubApp() *config.Rule {
- // define rule
- r := config.Rule{
- Description: "GitHub App Token",
- RuleID: "github-app-token",
- Regex: regexp.MustCompile(`(ghu|ghs)_[0-9a-zA-Z]{36}`),
- Keywords: []string{"ghu_", "ghs_"},
- }
- // validate
- tps := []string{"gihubAuth := \"ghs_" + sampleAlphaNumeric36Token + "\""}
- return validate(r, tps)
- }
- func GitHubRefresh() *config.Rule {
- // define rule
- r := config.Rule{
- Description: "GitHub Refresh Token",
- RuleID: "github-refresh-token",
- Regex: regexp.MustCompile(`ghr_[0-9a-zA-Z]{36}`),
- Keywords: []string{"ghr_"},
- }
- // validate
- tps := []string{"gihubAuth := \"ghr_" + sampleAlphaNumeric36Token + "\""}
- return validate(r, tps)
- }
|
