Home Explore Help
Sign In
LBP
/
gitleaks
mirror of https://github.com/gitleaks/gitleaks.git
4
0
Fork 0
Files Issues 0 Wiki
Tree: d8cd93cabe
Branches Tags
gitleaks
/
cmd
/
generate
/
config
/
rules
/
slack.go

slack.go 940 B
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849 
  1. package rules
    2. 

  2. 

  3. import (
    4. 

  4. 	"regexp"
    5. 

  5. 

  6. 	"github.com/zricethezav/gitleaks/v8/config"
    7. 

  7. )
    8. 

  8. 

  9. func SlackAccessToken() *config.Rule {
    10. 

  10. 	// define rule
    11. 

  11. 	r := config.Rule{
    12. 

  12. 		Description: "Slack token",
    13. 

  13. 		RuleID:      "slack-access-token",
    14. 

  14. 		Regex: regexp.MustCompile(
    15. 

  15. 			"xox[baprs]-([0-9a-zA-Z]{10,48})"),
    16. 

  16. 		Keywords: []string{
    17. 

  17. 			"xoxb",
    18. 

  18. 			"xoxa",
    19. 

  19. 			"xoxp",
    20. 

  20. 			"xoxr",
    21. 

  21. 			"xoxs",
    22. 

  22. 		},
    23. 

  23. 	}
    24. 

  24. 

  25. 	// validate
    26. 

  26. 	tps := []string{
    27. 

  27. 		"\"slackToken\": \"xoxb-" + sampleHex32Token + "\"",
    28. 

  28. 	}
    29. 

  29. 	return validate(r, tps)
    30. 

  30. }
    31. 

  31. 

  32. func SlackWebHook() *config.Rule {
    33. 

  33. 	// define rule
    34. 

  34. 	r := config.Rule{
    35. 

  35. 		Description: "Slack Webhook",
    36. 

  36. 		RuleID:      "slack-web-hook",
    37. 

  37. 		Regex: regexp.MustCompile(
    38. 

  38. 			`https:\/\/hooks.slack.com\/services\/[A-Za-z0-9+\/]{44,46}`),
    39. 

  39. 		Keywords: []string{
    40. 

  40. 			"hooks.slack.com",
    41. 

  41. 		},
    42. 

  42. 	}
    43. 

  43. 

  44. 	// validate
    45. 

  45. 	tps := []string{
    46. 

  46. 		"https://hooks.slack.com/services/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", // gitleaks:allow
    47. 

  47. 	}
    48. 

  48. 	return validate(r, tps)
    49. 

  49. }
    50.