kingfisher/crates/kingfisher-rules/data/rules/signifyd.yml

rules:
  - name: Signifyd API Key
    id: kingfisher.signifyd.1
    pattern: |
      (?xi)
      \b
      signifyd
      (?:.|[\n\r]){0,64}?
      \b(?:api[_-]?key|apikey|key|token)\b
      (?:.|[\n\r]){0,16}?
      [=:"'\s]
      \b
      (
        [A-Za-z0-9]{24,28}
      )
      \b
    pattern_requirements:
      min_digits: 2
      min_uppercase: 2
      min_lowercase: 4
    min_entropy: 3.5
    confidence: medium
    examples:
      - "signifyd\napikey=KSqPR9cGmJRxIfNLkRsJ09A9z"
      - "signifyd.key = 'MRnOQ9bGlIRsIfNLkRsJ09A9z'"
    references:
      - https://developer.signifyd.com/api/
    validation:
      type: Http
      content:
        request:
          method: GET
          url: https://api.signifyd.com/v2/teams
          headers:
            Authorization: "Basic {{ TOKEN }}"
            Accept: application/json
          response_matcher:
            - report_response: true
            - type: StatusMatch
              status: [200]
            - type: StatusMatch
              status: [401, 403]
              negative: true