Página inicial Explorar Ajuda
Entrar
LBP
/
gitleaks
mirror de https://github.com/gitleaks/gitleaks.git
4
0
Fork 0
Arquivos Issues 0 Wiki
Branch: master
Branches Tags
gitleaks
/
cmd
/
generate
/
config
/
rules
/
anthropic.go

anthropic.go 2.6 KB
Link permanente Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. package rules
    2. 

  2. 

  3. import (
    4. 

  4. 	"github.com/zricethezav/gitleaks/v8/cmd/generate/config/utils"
    5. 

  5. 	"github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
    6. 

  6. 	"github.com/zricethezav/gitleaks/v8/config"
    7. 

  7. )
    8. 

  8. 

  9. func AnthropicApiKey() *config.Rule {
    10. 

  10. 	// define rule
    11. 

  11. 	r := config.Rule{
    12. 

  12. 		RuleID:      "anthropic-api-key",
    13. 

  13. 		Description: "Identified an Anthropic API Key, which may compromise AI assistant integrations and expose sensitive data to unauthorized access.",
    14. 

  14. 		Regex:       utils.GenerateUniqueTokenRegex(`sk-ant-api03-[a-zA-Z0-9_\-]{93}AA`, false),
    15. 

  15. 		Keywords: []string{
    16. 

  16. 			"sk-ant-api03",
    17. 

  17. 		},
    18. 

  18. 	}
    19. 

  19. 

  20. 	// validate
    21. 

  21. 	tps := []string{
    22. 

  22. 		// Valid API key example
    23. 

  23. 		"sk-ant-api03-abc123xyz-456def789ghij-klmnopqrstuvwx-3456yza789bcde-1234fghijklmnopby56aaaogaopaaaabc123xyzAA",
    24. 

  24. 		// Generate additional random test keys
    25. 

  25. 		utils.GenerateSampleSecret("anthropic", "sk-ant-api03-"+secrets.NewSecret(utils.AlphaNumericExtendedShort("93"))+"AA"),
    26. 

  26. 	}
    27. 

  27. 

  28. 	fps := []string{
    29. 

  29. 		// Too short key (missing characters)
    30. 

  30. 		"sk-ant-api03-abc123xyz-456de-klMnopqrstuvwx-3456yza789bcde-1234fghijklmnopAA",
    31. 

  31. 		// Wrong suffix
    32. 

  32. 		"sk-ant-api03-abc123xyz-456def789ghij-klmnopqrstuvwx-3456yza789bcde-1234fghijklmnopby56aaaogaopaaaabc123xyzBB",
    33. 

  33. 		// Wrong prefix (admin key, not API key)
    34. 

  34. 		"sk-ant-admin01-abc123xyz-456def789ghij-klmnopqrstuvwx-3456yza789bcde-1234fghijklmnopby56aaaogaopaaaabc123xyzAA",
    35. 

  35. 	}
    36. 

  36. 

  37. 	return utils.Validate(r, tps, fps)
    38. 

  38. }
    39. 

  39. 

  40. func AnthropicAdminApiKey() *config.Rule {
    41. 

  41. 	// define rule
    42. 

  42. 	r := config.Rule{
    43. 

  43. 		RuleID:      "anthropic-admin-api-key",
    44. 

  44. 		Description: "Detected an Anthropic Admin API Key, risking unauthorized access to administrative functions and sensitive AI model configurations.",
    45. 

  45. 		Regex:       utils.GenerateUniqueTokenRegex(`sk-ant-admin01-[a-zA-Z0-9_\-]{93}AA`, false),
    46. 

  46. 		Keywords: []string{
    47. 

  47. 			"sk-ant-admin01",
    48. 

  48. 		},
    49. 

  49. 	}
    50. 

  50. 

  51. 	// validate
    52. 

  52. 	tps := []string{
    53. 

  53. 		// Valid admin key example
    54. 

  54. 		"sk-ant-admin01-abc12fake-456def789ghij-klmnopqrstuvwx-3456yza789bcde-12fakehijklmnopby56aaaogaopaaaabc123xyzAA",
    55. 

  55. 		// Generate additional random test keys
    56. 

  56. 		utils.GenerateSampleSecret("anthropic", "sk-ant-admin01-"+secrets.NewSecret(utils.AlphaNumericExtendedShort("93"))+"AA"),
    57. 

  57. 	}
    58. 

  58. 

  59. 	fps := []string{
    60. 

  60. 		// Too short key (missing characters)
    61. 

  61. 		"sk-ant-admin01-abc123xyz-456de-klMnopqrstuvwx-3456yza789bcde-1234fghijklmnopAA",
    62. 

  62. 		// Wrong suffix
    63. 

  63. 		"sk-ant-admin01-abc123xyz-456def789ghij-klmnopqrstuvwx-3456yza789bcde-1234fghijklmnopby56aaaogaopaaaabc123xyzBB",
    64. 

  64. 		// Wrong prefix (API key, not admin key)
    65. 

  65. 		"sk-ant-api03-abc123xyz-456def789ghij-klmnopqrstuvwx-3456yza789bcde-1234fghijklmnopby56aaaogaopaaaabc123xyzAA",
    66. 

  66. 	}
    67. 

  67. 

  68. 	return utils.Validate(r, tps, fps)
    69. 

  69. }
    70.