eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
kingfisher/data/rules/google.yml
Mick Grove bf24b0c563 Added rule for Google Gemini AI
2025-07-17 11:07:44 -07:00

130 lines
No EOL
4.3 KiB
YAML
Raw Blame History

rules:
- name: Google Client ID
id: kingfisher.google.1
pattern: '(?i)\b([0-9]+-[a-z0-9_]{32})\.apps\.googleusercontent\.com'
min_entropy: 3.3
confidence: medium
visible: false
examples:
- " 'clientID' : '231545488769-4d1mcev9vifvlncrern52id2pqqf5u5l.apps.googleusercontent.com',"
- " //$google_client_id = '244082345999-o6m8f1pmb1e76tjfj9v7b96j31e53ps5.apps.googleusercontent.com';"
- " GOOGLE_OAUTH2_CLIENT_ID = '607830223128-4qgthc7ofdqce232dk690t5jgkm1ce33.apps.googleusercontent.com'"
- ' $cordovaOauth.google("653512027492-5u9blotr1521fa0lo1172nhv4pmqgttq.apps.googleusercontent.com", ["email"]).then(function(result) {'
- name: Google OAuth Client Secret
id: kingfisher.google.2
pattern: |
(?xi)
\b
(GOCSPX-[A-Z0-9_-]{28})
(?:[^A-Z0-9_-] | $)
min_entropy: 3.3
confidence: medium
examples:
- 'const CLIENTSECRET = "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"'
- name: Google OAuth Client Secret
id: kingfisher.google.3
pattern: |
(?xi)
client.?secret .{0,10}
\b
([a-z0-9_-]{24})
(?: [^a-z0-9_-] |$)
min_entropy: 3.3
confidence: medium
examples:
- '"client_secret":"aaaaaaaaaaaaaaaaaaaaaaa-"'
- " //$google_client_secret = 'fnhqAakzWrX-mtFQ4PRdMoy0';"
- " 'clientSecret' : 'Ufvuj-d6alhwGKvvLh_8Nq0K'"
- name: Google OAuth Access Token
id: kingfisher.google.4
pattern: |
(?xi)
\b
(ya29\.[0-9A-Z_-]{20,1024})
(?: [^0-9A-Z_-]|$)
min_entropy: 3.3
confidence: medium
examples:
- |
const setupCredentials = () => {
const { encryptedData, iv } = encrypt({
expiry_date: 1642441058842,
access_token:
'ya29.A0ARrdaM--PV_87ebjywDJpXKb77NBFJl16meVUapYdfNv6W6ZzCu947fNaPaRjbDbOIIcp6f49cMaX5ndK9TAFnKwlVqz3nrK9nLKqgyDIhYsIq47smcAIZkK56SWPx3X3DwAFqRu2UPojpd2upWwo-3uJrod',
// This token is linked to a test Google account (typebot.test.user@gmail.com)
refresh_token:
'1//039xWRt8YaYa3CgYIARAAGAMSNwF-L9Iru9FyuTrDSa7lkSceggPho83kJt2J29Ga91EhT1C6XV1vmo6bQS9puL_R2t8FIwR3gek',
})
- |
-- Clear login if it's a new connection.
--propertyTable.access_token = 'ya29.Ci_UA7aEsvT6-oVI8f96kvB6i8oO13WgdZUviLaCVtpEPYZqhQcQycR-u2X9xtmYGA'
- name: Google OAuth Credentials
id: kingfisher.google.6
pattern: |
(?xi)
\b
([0-9]+-[a-z0-9_]{32}\.apps\.googleusercontent\.com)
(?:
(?s).{0,40}
)
\b
(?:
(GOCSPX-[A-Z0-9_-]{28})
|
(?:
(?i) client.?secret .{0,10} \b ([A-Z0-9_-]{24})
)
)
(?:[^A-Z0-9_-] | $)
min_entropy: 3.3
confidence: medium
examples:
- |
const CLIENT_ID = '304167046824-45h8no7j0s38akv998nivvb7i17ckqeh.apps.googleusercontent.com';
const CLIENT_SECRET = '1QcFpNjHoAf4_XczYwhYicTl';
- |
public static GAPIS_CREDENTIALS = {
// 1. Generate credentials: https://console.cloud.google.com/apis/
// 2. Create OAuth page and set spreadsheets and drive.metadata.readonly scopes
client_id: '132261435625-69ubohrvppjr9hcc5t9uighsb7j2cqhv.apps.googleusercontent.com',
client_secret: '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',
redirect_uri: `http://localhost:${Config.OAUTH_HTTP_PORT}/oauth2callback`
};
- name: Google Gemini API Key
id: kingfisher.google.7
pattern: |
(?xi)
(
AIza
[A-Za-z0-9_-]{35}
)
\b
min_entropy: 3.5
confidence: medium
examples:
- AIzaSyByz6BGQf8QtcQLml8spbyy8x5_327PTow
- AIzaSyDhISgbccTi6mfp2GOSmTtqdU__IdevJes
- AIzaSyA_uW1h2CF4ak3vHr7si_RFD_yWxM4tMAM
references:
- https://ai.google.dev/docs/gemini_api_overview
validation:
type: Http
content:
request:
method: GET
url: https://generativelanguage.googleapis.com/v1/models
headers:
X-goog-api-key: '{{ TOKEN }}'
response_matcher:
- report_response: true
- type: StatusMatch
status: [200]
- type: WordMatch
match_all_words: true
words:
- '"models"'
- '"name"'
View git blame Copy permalink