AWS Session Key not being matched

[domwhewell-sage]

Please review the Community Note before submitting

TruffleHog Version

3.74.0

Trace Output

https://gist.github.com/domwhewell-sage/66c6ce77f372d958dbbae7fdde4e6a0f

Expected Behavior

Session Key is detected

Actual Behavior

No secrets are detected

Steps to Reproduce

1. Paste a AWS session token into a .txt file
2. Run trufflehog filesystem <path_to_file>.txt against it

Environment

• OS: Kali
• Version 2023.3

Additional Context

Looking at the regex in awssessionkey.go, the sessionPAT seems to not match the == from the session token

References

N/A

[domwhewell-sage]

As suggested on slack I have run the commands mentioned here and cannot see any errors #2620 (comment)

I have added the result as a comment to my gist

[rgmz]

As suggested on slack I have run the commands mentioned here and cannot see any errors #2620 (comment)

The lack of those print statements mean that it's not being picked up by the detector at all. This indicates that there's an error with the keywords, pattern, or perhaps the verification overlap change (#2356, #2515 (comment)).

[domwhewell-sage]

If it helps the regex here works for session tokens obtained via aws sts get-session-token but does not work for session tokens obtained from aws sts assume-role