RegExp patterns for code secrets. This project is meant to be used by popular repository scanners that search for embedded secrets.
Collection variables containing popular snippets used in patterns. You can use ${quote}
in the patterns.json
as a short hand.
Collection of Regexp patterns for various types of secrets
Collection of allowed strings. ie fake/examples secrets
Just run npm test
. This will also run the build script prior to testing.
Just run npm run build
.
Please read CONTRIBUTING.md for details on our code of conduct, and the process for submitting pull requests to us.
We use SemVer for versioning. For the versions available, see the tags on this repository.
- will Farrell - Initial work - willfarrell
See also the list of contributors who participated in this project.
This project is licensed under the MIT License - see the LICENSE file for details
TODO:
-
.pgpass / pgpass.conf
pattern"PostgreSQL PGPASS File": "[^:]+:[0-9]{2,6}:[a-z][a-z0-9_]+:[^:]+:[^:]+",
- list of files that should be ignored/skipped
- make npm package
- add docs on how to curl file one needs w/ version tag