Home Esplora Aiuto
Accedi
LBP
/
gitleaks
mirror da https://github.com/gitleaks/gitleaks.git
4
0
Forka 0
File Problemi 0 Wiki
Albero (Tree): 8cfa6b2e43
Rami (Branch) Tag
gitleaks
/
cmd
/
generate
/
config
/
rules
/
config.tmpl

config.tmpl 3.2 KB
Cronologia Originale

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. # This file has been auto-generated. Do not edit manually.
    2. 

  2. # If you would like to contribute new rules, please use
    3. 

  3. # cmd/generate/config/main.go and follow the contributing guidelines
    4. 

  4. # at https://github.com/gitleaks/gitleaks/blob/master/CONTRIBUTING.md
    5. 

  5. 

  6. # This is the default gitleaks configuration file.
    7. 

  7. # Rules and allowlists are defined within this file.
    8. 

  8. # Rules instruct gitleaks on what should be considered a secret.
    9. 

  9. # Allowlists instruct gitleaks on what is allowed, i.e. not a secret.
    10. 

  10. 

  11. title = "{{.Title}}"
    12. 

  12. 

  13. [allowlist]
    14. 

  14. description = "{{.Allowlist.Description}}"
    15. 

  15. {{- with .Allowlist.RegexTarget }}
    16. 

  16. regexTarget = "{{ . }}"{{ end -}}
    17. 

  17. {{- with .Allowlist.Regexes }}
    18. 

  18. regexes = [{{ range $i, $regex := . }}
    19. 

  19.     '''{{ $regex }}''',{{ end }}
    20. 

  20. ]{{ end }}
    21. 

  21. {{- with .Allowlist.Paths }}
    22. 

  22. paths = [{{ range $i, $path := . }}
    23. 

  23.     '''{{ $path }}''',{{ end }}
    24. 

  24. ]{{ end }}
    25. 

  25. 

  26. {{ range $i, $rule := .Rules }}[[rules]]
    27. 

  27. id = "{{$rule.RuleID}}"
    28. 

  28. description = "{{$rule.Description}}"
    29. 

  29. regex = '''{{$rule.Regex}}'''
    30. 

  30. {{- with $rule.Path }}
    31. 

  31. path = '''{{ . }}'''{{ end -}}
    32. 

  32. {{- with $rule.SecretGroup }}
    33. 

  33. secretGroup = {{ . }}{{ end -}}
    34. 

  34. {{- with $rule.Entropy }}
    35. 

  35. entropy = {{ . }}{{ end -}}
    36. 

  36. {{- with $rule.Keywords }}
    37. 

  37. {{- if gt (len .) 1}}
    38. 

  38. keywords = [{{ range $j, $keyword := . }}
    39. 

  39.     "{{ $keyword }}",{{ end }}
    40. 

  40. ]{{else}}
    41. 

  41. keywords = [{{ range $j, $keyword := . }}"{{ $keyword }}"{{ end }}]{{end}}{{ end }}
    42. 

  42. {{- with $rule.Tags }}
    43. 

  43. tags = [
    44. 

  44.     {{ range $j, $tag := . }}"{{ $tag }}",{{ end }}
    45. 

  45. ]{{ end }}
    46. 

  46. 

  47. {{- /*
    48. 

  48.     * Use [rules.allowlist] for a while, allow people to catch up with the new syntax.
    49. 

  49.     * TODO: Remove this a few major versions after 8.21.0
    50. 

  50.     * https://github.com/gitleaks/gitleaks/issues/1571
    51. 

  51.     */}}
    52. 

  52. {{- if eq (len $rule.Allowlists) 1 }}{{ with index $rule.Allowlists 0}}{{ if or .Regexes .Paths .Commits .StopWords }}
    53. 

  53. # NOTE: Gitleaks >= v8.21.0 should use [[rules.allowlists] instead.
    54. 

  54. [rules.allowlist]
    55. 

  55. {{ with .MatchCondition }}condition = "{{ . }}"
    56. 

  56. {{ end -}}
    57. 

  57. {{- with .Commits }}commits = [
    58. 

  58.     {{ range $j, $commit := . }}"{{ $commit }}",{{ end }}
    59. 

  59. ]{{ end }}
    60. 

  60. {{- with .Paths }}paths = [
    61. 

  61.     {{ range $j, $path := . }}'''{{ $path }}''',{{ end }}
    62. 

  62. ]{{ end }}
    63. 

  63. {{- with .RegexTarget }}regexTarget = "{{ . }}"
    64. 

  64. {{ end -}}
    65. 

  65. {{- with .Regexes }}regexes = [{{ range $i, $regex := . }}
    66. 

  66.     '''{{ $regex }}''',{{ end }}
    67. 

  67. ]{{ end }}
    68. 

  68. {{- with .StopWords }}stopwords = [{{ range $j, $stopword := . }}
    69. 

  69.     "{{ $stopword }}",{{ end }}
    70. 

  70. ]{{ end }}{{ end }}{{ end }}
    71. 

  71. {{ else }}
    72. 

  72. {{ with $rule.Allowlists }}{{ range $i, $allowlist := . }}{{ if or $allowlist.Regexes $allowlist.Paths $allowlist.Commits $allowlist.StopWords }}
    73. 

  73. [[rules.allowlists]]
    74. 

  74. {{ with $allowlist.MatchCondition }}condition = "{{ .String }}"
    75. 

  75. {{ end -}}
    76. 

  76. {{- with $allowlist.Commits }}commits = [
    77. 

  77.     {{ range $j, $commit := . }}"{{ $commit }}",{{ end }}
    78. 

  78. ]{{ end }}
    79. 

  79. {{- with $allowlist.Paths }}paths = [
    80. 

  80.     {{ range $j, $path := . }}'''{{ $path }}''',{{ end }}
    81. 

  81. ]{{ end }}
    82. 

  82. {{- with $allowlist.RegexTarget }}regexTarget = "{{ . }}"
    83. 

  83. {{ end -}}
    84. 

  84. {{- with $allowlist.Regexes }}regexes = [{{ range $i, $regex := . }}
    85. 

  85.     '''{{ $regex }}''',{{ end }}
    86. 

  86. ]{{ end }}
    87. 

  87. {{- with $allowlist.StopWords }}stopwords = [{{ range $j, $stopword := . }}
    88. 

  88.     "{{ $stopword }}",{{ end }}
    89. 

  89. ]{{ end }}{{ end }}{{ end }}
    90. 

  90. {{ end }}{{ end }}
    91. 

  91. {{ end -}}
    92.