From 4fb8e616dcd71a7d3eecad7cd6e472821b26a677 Mon Sep 17 00:00:00 2001
From: Mick Grove <mick.grove@mongodb.com>
Date: Sun, 23 Nov 2025 20:00:19 -0800
Subject: [PATCH] added youtube rule

---
 CHANGELOG.md       | 1 -
 data/rules/uri.yml | 8 ++++++--
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 47712e2..621e5b0 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,7 +5,6 @@ All notable changes to this project will be documented in this file.
 ## [v1.67.0]
 - Added checksum to GitLab rule
 - Fixed deduplication to consider rule identifiers so overlapping patterns are not merged before validation
-- Moved "URI with Username and Secret" to a low-confidence rule
 
 ## [v1.66.0]
 - Updating to support Bitbucket App Passwords
diff --git a/data/rules/uri.yml b/data/rules/uri.yml
index db03edc..8b40865 100644
--- a/data/rules/uri.yml
+++ b/data/rules/uri.yml
@@ -21,8 +21,12 @@ rules:
         - "*****"
         - "xxxxx"
         - "username:"
+        - "user:"
+        - ":password"
+        - ":pass"
+        - ">:<"
     min_entropy: 4.0
-    confidence: low
+    confidence: medium
     examples:
       - https://username:secret@example.com/path
     validation:
@@ -32,7 +36,7 @@ rules:
           method: GET
           url: '{{ TOKEN }}'
           response_matcher:
-            - report_response: true
+            - report_response: false
               type: StatusMatch
               status:
                 - 200