eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions

v1.87.0

Browse source
This commit is contained in:
Mick Grove 2026-03-09 20:46:08 -07:00
commit b518e349df
4 changed files with 7 additions and 46 deletions
Download patch file Download diff file Expand all files Collapse all files

33
crates/kingfisher-rules/data/rules/google.yml
View file

@ -26,17 +26,7 @@ rules:
- name: Google OAuth Client Secret
id: kingfisher.google.3
pattern: |
(?xi)
client.?secret
(?:.|[\n\r]){0,10}?
[ \t]*[=:][ \t]*
['"]?
(
[a-z0-9_-]{24}
)
['"]?
(?: [^a-z0-9_-] |$)
pattern: (?i)(?:client[_\-. ]?secret)(?:.|[\n\r]){0,20}?[=:][ \t]*['"]?([A-Z0-9_-]{24})['"]?(?:[^A-Z0-9_-]|$)
pattern_requirements:
min_digits: 1
min_uppercase: 3
@ -74,26 +64,7 @@ rules:
- name: Google OAuth Credentials
id: kingfisher.google.6
pattern: |
(?xi)
([0-9]+-[a-z0-9_]{32}\.apps\.googleusercontent\.com)
(?:
(?s).{0,40}
)
(?:
(GOCSPX-[A-Z0-9_-]{28})
|
(?:
(?i)
client.?secret
(?:.|[\n\r]){0,10}?
[ \t]*[=:][ \t]*
['"]?
\b ([A-Z0-9_-]{24})
['"]?
)
)
(?:[^A-Z0-9_-] | $)
pattern: (?is)([0-9]+-[a-z0-9_]{32}\.apps\.googleusercontent\.com)(?:.|[\n\r]){0,120}?(?:GOCSPX-[A-Z0-9_-]{28}|(?:client[_\-. ]?secret)(?:.|[\n\r]){0,20}?[=:][ \t]*['"]?([A-Z0-9_-]{24})['"]?)(?:[^A-Z0-9_-]|$)
pattern_requirements:
min_digits: 2
min_entropy: 3.3

13
crates/kingfisher-rules/data/rules/redis.yml
View file

@ -77,18 +77,7 @@ rules:
- id: kingfisher.redis.3
name: Redis Password (Standalone Config)
# Detects REDIS_PASSWORD, redis_password, redis.password etc. in env vars and config files
pattern: |
(?xi)
\b
(?:REDIS|redis)
[-_.]?
(?:PASSWORD|PASS|PASSWD|AUTH|SECRET|TOKEN)
\b
(?:.|[\n\r]){0,24}?
[ \t]*[=:][ \t]*
['"]?
(?P<password>[a-zA-Z0-9%;._~!$&'()*+,;=/*+-]{8,64})
['"]?
pattern: (?i)\b(?:redis[-_.]?(?:password|pass|passwd|auth|secret|token)|config\.redis\.auth)\b(?:.|[\n\r]){0,24}?[=:][ \t]*['"]?([a-zA-Z0-9%;._~!$&'()*+,;=/*+-]{8,64})['"]?
pattern_requirements:
ignore_if_contains: