forked from mirrors/kingfisher
0f953f59a5
Why: Hyperscan doesn’t support lookaheads/behinds, so many “must contain X and Y” checks had to be baked into the regex (hurting readability) or were impossible. pattern_requirements applies lightweight, in-memory checks after a match is found, keeping patterns fast and clean.
39 lines
No EOL
1.2 KiB
YAML
39 lines
No EOL
1.2 KiB
YAML
rules:
|
|
- name: Sendgrid API token
|
|
id: kingfisher.sendgrid.1
|
|
pattern: |
|
|
(?xi)
|
|
\b
|
|
(
|
|
SG
|
|
\.
|
|
[0-9A-Z_-]{20,24}
|
|
\.
|
|
[0-9A-Z_-]{39,47}
|
|
)
|
|
pattern_requirements:
|
|
min_digits: 2
|
|
min_entropy: 3.5
|
|
confidence: medium
|
|
examples:
|
|
- " 'SENDGRID_API_KEYSID': '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'"
|
|
- "var sendgrid = require('sendgrid')('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');"
|
|
- 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
|
|
references:
|
|
- https://docs.sendgrid.com/ui/account-and-settings/api-keys
|
|
validation:
|
|
type: Http
|
|
content:
|
|
request:
|
|
method: GET
|
|
url: https://api.sendgrid.com/v3/user/account
|
|
headers:
|
|
Authorization: "Bearer {{ TOKEN }}"
|
|
Accept: application/json
|
|
response_matcher:
|
|
- report_response: true
|
|
- type: StatusMatch
|
|
status: [200]
|
|
- type: WordMatch
|
|
match_all_words: true
|
|
words: ['"reputation"', '"type"'] |