forked from sourcegraph-community/no-secrets
-
Notifications
You must be signed in to change notification settings - Fork 0
/
sourcegraph-console-query.txt
140 lines (94 loc) · 3.15 KB
/
sourcegraph-console-query.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
// No Secrets! uses the following files from other authors:
// github.com/dxa4481/truffleHogRegexes/regexes.json
// Copyright 2018 Dylan Ayrey, GNU General Public License v3.0
// Filter out any files you don't want
-file:(index.html|sourcegraph-console-query.txt|README.md|bookmarklet.js)
patterntype:regex
// Use this list of known patterns (from truffleHog) and add your own!
// Slack Token
(xox[pborsa]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32}) or
// RSA private key
-----BEGIN RSA PRIVATE KEY----- or
// SSH (DSA) private key
-----BEGIN DSA PRIVATE KEY----- or
// SSH (EC) private key
-----BEGIN EC PRIVATE KEY----- or
// PGP private key block
-----BEGIN PGP PRIVATE KEY BLOCK----- or
// AWS API Key
((?:A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}) or
// Amazon MWS Auth Token
amzn\\.mws\\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12} or
// AWS API Key
AKIA[0-9A-Z]{16} or
// AWS AppSync GraphQL Key
da2-[a-z0-9]{26} or
// Facebook Access Token
EAACEdEose0cBA[0-9A-Za-z]+ or
// Facebook OAuth
[fF][aA][cC][eE][bB][oO][oO][kK].*['|\"][0-9a-f]{32}['|\"] or
// GitHub
[gG][iI][tT][hH][uU][bB].*['|\"][0-9a-zA-Z]{35,40}['|\"] or
// Generic API Key
[aA][pP][iI]_?[kK][eE][yY].*['|\"][0-9a-zA-Z]{32,45}['|\"] or
// Generic Secret
[sS][eE][cC][rR][eE][tT].*['|\"][0-9a-zA-Z]{32,45}['|\"] or
// Google API Key
AIza[0-9A-Za-z\\-_]{35} or
// Google Cloud Platform API Key
AIza[0-9A-Za-z\\-_]{35} or
// Google Cloud Platform OAuth
[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com or
// Google Drive API Key
AIza[0-9A-Za-z\\-_]{35} or
// Google Drive OAuth
[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com or
// Google (GCP) Service-account
\"type\": \"service_account\" or
// Google Gmail API Key
AIza[0-9A-Za-z\\-_]{35} or
// Google Gmail OAuth
[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com or
// Google OAuth Access Token
ya29\\.[0-9A-Za-z\\-_]+ or
// Google YouTube API Key
AIza[0-9A-Za-z\\-_]{35} or
// Google YouTube OAuth
[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com or
// Heroku API Key
[hH][eE][rR][oO][kK][uU].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12} or
// Mailchimp API Key
[0-9a-f]{32}-us[0-9]{1,2} or
// Mailgun API Key
key-[0-9a-zA-Z]{32} or
// Password in URL
[a-zA-Z]{3,10}:// [^/\\s:@]{3,20}:[^/\\s:@]{3,20}@.{1,100}[\"'\\s] or
// PayPal Braintree Access Token
access_token\\$production\\$[0-9a-z]{16}\\$[0-9a-f]{32} or
// Picatic API Key
sk_live_[0-9a-z]{32} or
// Slack Webhook
https:// hooks\\.slack\\.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24} or
// Stripe API Key
sk_live_[0-9a-zA-Z]{24} or
// Stripe Restricted API Key
rk_live_[0-9a-zA-Z]{24} or
// Square Access Token
sq0atp-[0-9A-Za-z\\-_]{22} or
// Square OAuth Secret
sq0csp-[0-9A-Za-z\\-_]{43} or
// Telegram Bot API Key
[0-9]+:AA[0-9A-Za-z\\-_]{33} or
// Twilio API Key
SK[0-9a-fA-F]{32} or
// Twitter Access Token
[tT][wW][iI][tT][tT][eE][rR].*[1-9][0-9]+-[0-9a-zA-Z]{40} or
// Twitter OAuth
[tT][wW][iI][tT][tT][eE][rR].*['|\"][0-9a-zA-Z]{35,44}['|\"]"
// Not from truffleHog
// Twitter Secret
[0-9a-zA-Z]{50}
// Twitter Bearer Token
A{22}[0-9a-zA-Z].{89}
// GitHub Token
ghp_[0-9a-z]{36}