| 1234567891011121314151617181920212223242526272829303132333435363738394041 |
- package rules
- import (
- "github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
- "github.com/zricethezav/gitleaks/v8/config"
- )
- func SquareAccessToken() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "square-access-token",
- Description: "Detected a Square Access Token, risking unauthorized payment processing and financial transaction exposure.",
- Regex: generateUniqueTokenRegex(`(EAAA|sq0atp-)[0-9A-Za-z\-_]{22,60}`, true),
- Keywords: []string{"sq0atp-", "EAAA"},
- }
- // validate
- tps := []string{
- generateSampleSecret("square", secrets.NewSecret(`sq0atp-[0-9A-Za-z\-_]{22}`)),
- "ARG token=sq0atp-812erere3wewew45678901", // gitleaks:allow
- "ARG token=EAAAlsBxkkVgvmr7FasTFbM6VUGZ31EJ4jZKTJZySgElBDJ_wyafHuBFquFexY7E", // gitleaks:allow",
- }
- return validate(r, tps, nil)
- }
- func SquareSecret() *config.Rule {
- // define rule
- r := config.Rule{
- RuleID: "square-secret",
- Description: "Square Secret",
- Regex: generateUniqueTokenRegex(`sq0csp-[0-9A-Za-z\\-_]{43}`, true),
- Keywords: []string{"sq0csp-"},
- }
- // validate
- tps := []string{
- generateSampleSecret("square", secrets.NewSecret(`sq0csp-[0-9A-Za-z\\-_]{43}`)),
- `value: "sq0csp-0p9h7g6f4s3s3s3-4a3ardgwa6ADRDJDDKUFYDYDYDY"`, // gitleaks:allow
- }
- return validate(r, tps, nil)
- }
|
