Strona główna Odkrywaj Pomoc
Zaloguj się
LBP
/
gitleaks
kopia lustrzana https://github.com/gitleaks/gitleaks.git
4
0
Forkuj 0
Pliki Problemy 0 Wiki
Drzewo: fe94ef9ca3
Gałęzie Tagi
gitleaks
/
cmd
/
generate
/
config
/
rules
/
authress.go

authress.go 1.2 KB
Historia Czysty

12345678910111213141516171819202122232425262728293031 
  1. package rules
    2. 

  2. 

  3. import (
    4. 

  4. 	"fmt"
    5. 

  5. 

  6. 	"github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
    7. 

  7. 	"github.com/zricethezav/gitleaks/v8/config"
    8. 

  8. )
    9. 

  9. 

  10. func Authress() *config.Rule {
    11. 

  11. 	// Rule Definition
    12. 

  12. 	// (Note: When changes are made to this, rerun `go generate ./...` and commit the config/gitleaks.toml file
    13. 

  13. 	r := config.Rule{
    14. 

  14. 		Description: "Uncovered a possible Authress Service Client Access Key, which may compromise access control services and sensitive data.",
    15. 

  15. 		RuleID:      "authress-service-client-access-key",
    16. 

  16. 		Regex:       generateUniqueTokenRegex(`(?:sc|ext|scauth|authress)_[a-z0-9]{5,30}\.[a-z0-9]{4,6}\.acc[_-][a-z0-9-]{10,32}\.[a-z0-9+/_=-]{30,120}`, true),
    17. 

  17. 		Keywords:    []string{"sc_", "ext_", "scauth_", "authress_"},
    18. 

  18. 	}
    19. 

  19. 

  20. 	// validate
    21. 

  21. 	// https://authress.io/knowledge-base/docs/authorization/service-clients/secrets-scanning/#1-detection
    22. 

  22. 	service_client_id := "sc_" + alphaNumeric("10")
    23. 

  23. 	access_key_id := alphaNumeric("4")
    24. 

  24. 	account_id := "acc_" + alphaNumeric("10")
    25. 

  25. 	signature_key := alphaNumericExtendedShort("40")
    26. 

  26. 

  27. 	tps := []string{
    28. 

  28. 		generateSampleSecret("authress", secrets.NewSecret(fmt.Sprintf(`%s\.%s\.%s\.%s`, service_client_id, access_key_id, account_id, signature_key))),
    29. 

  29. 	}
    30. 

  30. 	return validate(r, tps, nil)
    31. 

  31. }
    32.