kingfisher/crates/kingfisher-rules/data/rules/svix.yml

rules:
  - name: Svix Webhook Signing Secret
    id: kingfisher.svix.1
    pattern: |
      (?x)
      \b
      (
        whsec_(?:[A-Za-z0-9+/]{32}|[A-Za-z0-9+/]{43}=|[A-Za-z0-9+/]{42}==)
      )
      (?:\b|$)
    min_entropy: 3.0
    confidence: medium
    examples:
      - 'WEBHOOK_SECRET=whsec_MfKQ9r8GKYqrTwjUPD8ILPZIo2LaLaSw'
      - 'SVIX_WEBHOOK_SECRET="whsec_C2FVsBQIhrscChlQIMV+b5sSYspob7oD"'
    references:
      - https://docs.svix.com/receiving/verifying-payloads/how-manual