Home Verkennen Help
Inloggen
LBP
/
gitleaks
spiegel van https://github.com/gitleaks/gitleaks.git
4
0
Vork 0
Bestanden Issues 0 Wiki
Boom: d8cd93cabe
Aftakkingen Labels
gitleaks
/
cmd
/
generate
/
config
/
rules
/
stripe.go

stripe.go 762 B
Geschiedenis Ruwe

12345678910111213141516171819202122232425262728293031323334353637 
  1. package rules
    2. 

  2. 

  3. import (
    4. 

  4. 	"regexp"
    5. 

  5. 

  6. 	"github.com/rs/zerolog/log"
    7. 

  7. 

  8. 	"github.com/zricethezav/gitleaks/v8/config"
    9. 

  9. 	"github.com/zricethezav/gitleaks/v8/detect"
    10. 

  10. )
    11. 

  11. 

  12. func StripeAccessToken() *config.Rule {
    13. 

  13. 	// define rule
    14. 

  14. 	r := config.Rule{
    15. 

  15. 		Description: "Stripe",
    16. 

  16. 		RuleID:      "stripe-access-token",
    17. 

  17. 		Regex:       regexp.MustCompile(`(?i)(sk|pk)_(test|live)_[0-9a-z]{10,32}`),
    18. 

  18. 		Keywords: []string{
    19. 

  19. 			"sk_test",
    20. 

  20. 			"pk_test",
    21. 

  21. 			"sk_live",
    22. 

  22. 			"pk_live",
    23. 

  23. 		},
    24. 

  24. 	}
    25. 

  25. 

  26. 	// validate
    27. 

  27. 	tps := []string{"stripeToken := \"sk_test_" + sampleHex32Token + "\""}
    28. 

  28. 	d := detect.NewDetector(config.Config{
    29. 

  29. 		Rules: []*config.Rule{&r},
    30. 

  30. 	})
    31. 

  31. 	for _, tp := range tps {
    32. 

  32. 		if len(d.DetectString(tp)) != 1 {
    33. 

  33. 			log.Fatal().Msg("Failed to validate stripe-access-token")
    34. 

  34. 		}
    35. 

  35. 	}
    36. 

  36. 	return &r
    37. 

  37. }
    38.