kingfisher/data/rules/postgres.yml

rules:
  - name: Postgres URL with hardcoded password
    id: kingfisher.postgres.1
    pattern: |
      (?xi)
      (?:
        postgres
        (?:ql)?
        | postgis
      )
      :\/\/
      (?:
        [\w]+
      )
      :
      (?:
        [^\@]+
      )
      @
      (?:
        [^:\/]+
      )
      :
      (?:
        \d+
      )
    min_entropy: 3.3
    confidence: medium
    examples:
      - CONNECTION_URI="postgres://postgres:s2Tf2k@rLMy@google.com:5434/elephant"
      - Connection URI= postgresql://nimda:vg498hwegw1udp6s@db-postgresql-nyc1-64297-do-user-1243723-0.db.ondigitalocean.com:25060/defaultdb?sslmode=require
      - CONNECTION_URI="postgres://postgres:s2Tf2k@rLMy@google.com:5434/elephant"
      - CONNECTION_URI="postgis://postgres:s2Tf2k@rLMy@google.com:5434/elephant"
      - CONNECTION_URI="postgis://postgres:s2Tf2k@rLMy@google.com:5434/elephant"
    validation:
      type: Postgres
preparing for v1.12 2025-06-24 17:17:16 -07:00			`rules:`
			`- name: Postgres URL with hardcoded password`
			`id: kingfisher.postgres.1`
			`pattern: \|`
			`(?xi)`
			`(?:`
			`postgres`
			`(?:ql)?`
			`\| postgis`
			`)`
			`:\/\/`
			`(?:`
			`[\w]+`
			`)`
			`:`
			`(?:`
			`[^\@]+`
			`)`
			`@`
			`(?:`
			`[^:\/]+`
			`)`
			`:`
			`(?:`
			`\d+`
			`)`
			`min_entropy: 3.3`
			`confidence: medium`
			`examples:`
			`- CONNECTION_URI="postgres://postgres:s2Tf2k@rLMy@google.com:5434/elephant"`
			`- Connection URI= postgresql://nimda:vg498hwegw1udp6s@db-postgresql-nyc1-64297-do-user-1243723-0.db.ondigitalocean.com:25060/defaultdb?sslmode=require`
			`- CONNECTION_URI="postgres://postgres:s2Tf2k@rLMy@google.com:5434/elephant"`
			`- CONNECTION_URI="postgis://postgres:s2Tf2k@rLMy@google.com:5434/elephant"`
			`- CONNECTION_URI="postgis://postgres:s2Tf2k@rLMy@google.com:5434/elephant"`
			`validation:`
			`type: Postgres`