Skip to content

Commit

Permalink
Update rules
Browse files Browse the repository at this point in the history
  • Loading branch information
@babenek
babenek committed Jul 25, 2023
1 parent 62e5c36 commit 7ed0989
Show file tree
Hide file tree
Showing 2 changed files with 13 additions and 9 deletions.
20 changes: 11 additions & 9 deletions credsweeper/rules/config.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
filter_type:
- CreditCardNumberCheck
min_line_len: 16
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"
doc_available: false

- name: API
Expand All @@ -31,6 +31,7 @@
required_substrings:
- A
min_line_len: 20
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: AWS Multi
severity: high
Expand Down Expand Up @@ -202,7 +203,7 @@
severity: medium
type: keyword
values:
- pass|pw(d|\b)
- (?<!by)pass(?!ed)|pw(d|\b)
filter_type: PasswordKeyword
use_ml: true
min_line_len: 10
Expand Down Expand Up @@ -587,7 +588,7 @@
- (^|[^.0-9A-Za-z_/+-])(?P<value>[a-zA-Z0-9]{18}([a-zA-Z0-9]{14})?)([^0-9A-Za-z.$_/+-]|$)
filter_type: WeirdBase64Token
min_line_len: 18
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Bitbucket Client Secret
severity: info
Expand All @@ -596,7 +597,7 @@
- (^|[^.0-9A-Za-z_/+-])(?P<value>([a-zA-Z0-9_-]{32}){1,2})([^0-9A-Za-z.$_/+-]|$)
filter_type: WeirdBase64Token
min_line_len: 32
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Jira / Confluence PAT token
severity: high
Expand All @@ -609,6 +610,7 @@
- M
- N
- O
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Atlassian Old PAT token
severity: info
Expand All @@ -617,7 +619,7 @@
- (^|[^.0-9A-Za-z_/+-])(?P<value>[a-zA-Z0-9]{24})([^=0-9A-Za-z.$_/+-]|$)
filter_type: WeirdBase64Token
min_line_len: 24
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Atlassian PAT token
severity: high
Expand Down Expand Up @@ -748,7 +750,7 @@
- (^|[^.0-9A-Za-z_/+-])(?P<value>[a-z0-9]{15})([^=0-9A-Za-z_/+-]|$)
filter_type: WeirdBase36Token
min_line_len: 15
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Gitlab Incoming Email Token
severity: info
Expand All @@ -757,7 +759,7 @@
- (^|[^.0-9A-Za-z_/+-])(?P<value>[a-z0-9]{24,25})([^=0-9A-Za-z_/+-]|$)
filter_type: WeirdBase36Token
min_line_len: 24
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Gitlab Feed Token
severity: info
Expand All @@ -766,7 +768,7 @@
- (^|[^.0-9A-Za-z_/+-])(?P<value>[a-zA-Z0-9_-]{20})([^=0-9A-Za-z_/+-]|$)
filter_type: WeirdBase64Token
min_line_len: 20
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"

- name: Jira 2FA
severity: info
Expand All @@ -780,4 +782,4 @@
- ValueBase32DataCheck
- ValueTokenBase32Check
min_line_len: 16
required_regex: ([a-zA-Z0-9_/+-]{15,})
required_regex: "[a-zA-Z0-9_/+-]{15,}"
2 changes: 2 additions & 0 deletions tests/samples/password.gradle
View file
Original file line number Diff line number Diff line change
@@ -1 +1,3 @@
password = "cackle!"
bypass = "cackle!"
passed = "cackle!"

0 comments on commit 7ed0989

Please sign in to comment.