eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
kingfisher/crates/kingfisher-rules/data/rules/django.yml
Mick Grove e518fb30f2 v1.81.0
2026-02-10 19:24:19 -08:00

18 lines
527 B
YAML
Raw Permalink Blame History

rules:
- name: Django Secret Key
id: kingfisher.django.1
pattern: |
(?x)
[DJANGO]\w{0,8}SECRET_KEY
.{1,16}?
(
[A-Za-z0-9*!$@\#&_%^-]{45,55}
)
\b
min_entropy: 4.5
confidence: medium
examples:
- os.environ.get('DJANGO_SECRET_KEY','wwf*2#86t64!fgh6yav$aoeuo@u2o@fy&*gg76q!&%6x_wbduad')
- DJANGO_SECRET_KEY = "a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0u1v2w3x4y5z"
references:
- https://docs.djangoproject.com/en/stable/ref/settings/#secret-key
View git blame Copy permalink