general-test

# Different types of password hashes
$y$j9T$OO/cvWZ17nxP6XzO1jNt5/$wtUrYmUAzg6p1hdQ/WJtsjq7gJ6if4dP6LcDlXedZU6

# Different types of password hashes
$gy$j9T$7Q9Z.KDwQ06akx6VxwMpn.$en8X0EUE.xdbTSDZlftyzqDEcXaU7rORvdWLhaPygB2

# Different types of password hashes
$2b$05$YuHSRtnwiF7AbEd3Xe9rauK0N8EHKHoajjAPQz/29QMGdbisxy.3.

# Different types of password hashes
$6$cjvUY6xnMEVNYUv6$ttG2bz2lglfS4rliP.T7Ozaak7bPVg5ccZ.E.H5F09jIOfvG/yJb5nfQ3tN6uMiH7Z1t/AXDHUgD5xdqE6MUu1

# Different types of password hashes
$5$8pFTUnUr.HhP3O52$Fl1S4nX1p0PONBIcG7PN5jTQAtulYNf2AQCJyXV6Dt.

# Different types of password hashes
$md5,rounds=89650$IU7ELX9N$$VUWQHUYZkb7n3SpAmBHq0/

# Different types of password hashes
$1$lMsBjmBR$3UpSfv5QTMtGoneFKCIJW1

# Test General Secret with optional notsecret tag
password = 'swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw'

# Test General Secret with optional notsecret tag
password = '1b3d576ba5a108c3b7374142bfd02992' notasecret

# Test General Secret with optional notsecret tag
password = '2b3d576ba5a108c3b7374142bfd02992' yonotsecret

# Test General Secret with optional notsecret tag
password = '3b3d576ba5a108c3b7374142bfd02992' 'notsecret

# Test General Secret with optional notsecret tag
password = '4b3d576ba5a108c3b7374142bfd02992' notsecret'

# Test General Secret with optional notsecret tag
password = '5b3d576ba5a108c3b7374142bfd02992' notsecretyo

# Test General Secret with optional notsecret tag
secret= 'swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw'

# Test General Secret with optional notsecret tag
secret= '1b3d576ba5a108c3b7374142bfd02992' notasecret

# Test General Secret with optional notsecret tag
secret= '2b3d576ba5a108c3b7374142bfd02992' yonotsecret

# Test General Secret with optional notsecret tag
secret= '3b3d576ba5a108c3b7374142bfd02992' 'notsecret

# Test General Secret with optional notsecret tag
secret= '4b3d576ba5a108c3b7374142bfd02992' notsecret'

# Test General Secret with optional notsecret tag
secret= '5b3d576ba5a108c3b7374142bfd02992' notsecretyo

# Test General Secret with optional notsecret tag
secret_key": "swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw"

# Test General Secret with optional notsecret tag
secret_key": "1b3d576ba5a108c3b7374142bfd02992" notasecret

# Test General Secret with optional notsecret tag
secret_key": "2b3d576ba5a108c3b7374142bfd02992" yonotsecret

# Test General Secret with optional notsecret tag
secret_key": "3b3d576ba5a108c3b7374142bfd02992" 'notsecret

# Test General Secret with optional notsecret tag
secret_key": "4b3d576ba5a108c3b7374142bfd02992" notsecret'

# Test General Secret with optional notsecret tag
secret_key": "5b3d576ba5a108c3b7374142bfd02992" notsecretyo

# Test General Secret with optional notsecret tag
secret_access_key": "swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw"

# Test General Secret with optional notsecret tag
secret_access_key": "1b3d576ba5a108c3b7374142bfd02992" notasecret

# Test General Secret with optional notsecret tag
secret_access_key": "2b3d576ba5a108c3b7374142bfd02992" yonotsecret

# Test General Secret with optional notsecret tag
secret_access_key": "3b3d576ba5a108c3b7374142bfd02992" 'notsecret

# Test General Secret with optional notsecret tag
secret_access_key": "4b3d576ba5a108c3b7374142bfd02992" notsecret'

# Test General Secret with optional notsecret tag
secret_access_key": "5b3d576ba5a108c3b7374142bfd02992" notsecretyo

# Test General Secret with optional notsecret tag
secret_accesskey": "swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw"

# Test General Secret with optional notsecret tag
secret_accesskey": "1b3d576ba5a108c3b7374142bfd02992" notasecret

# Test General Secret with optional notsecret tag
secret_accesskey": "2b3d576ba5a108c3b7374142bfd02992" yonotsecret

# Test General Secret with optional notsecret tag
secret_accesskey": "3b3d576ba5a108c3b7374142bfd02992" 'notsecret

# Test General Secret with optional notsecret tag
secret_accesskey": "4b3d576ba5a108c3b7374142bfd02992" notsecret'

# Test General Secret with optional notsecret tag
secret_accesskey": "5b3d576ba5a108c3b7374142bfd02992" notsecretyo

# Test General Secret with optional notsecret tag
SecretAccessKey": "swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw"

# Test General Secret with optional notsecret tag
SecretAccessKey": "1b3d576ba5a108c3b7374142bfd02992" notasecret

# Test General Secret with optional notsecret tag
SecretAccessKey": "2b3d576ba5a108c3b7374142bfd02992" yonotsecret

# Test General Secret with optional notsecret tag
SecretAccessKey": "3b3d576ba5a108c3b7374142bfd02992" 'notsecret

# Test General Secret with optional notsecret tag
SecretAccessKey": "4b3d576ba5a108c3b7374142bfd02992" notsecret'

# Test General Secret with optional notsecret tag
SecretAccessKey": "5b3d576ba5a108c3b7374142bfd02992" notsecretyo

# Test General Secret with optional notsecret tag
secret=swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw

# Test General Secret with optional notsecret tag
secret=1b3d576ba5a108c3b7374142bfd02992  notasecret

# Test General Secret with optional notsecret tag
secret=2b3d576ba5a108c3b7374142bfd02992  yonotsecret

# Test General Secret with optional notsecret tag
secret=3b3d576ba5a108c3b7374142bfd02992  'notsecret

# Test General Secret with optional notsecret tag
secret=4b3d576ba5a108c3b7374142bfd02992  notsecret'

# Test General Secret with optional notsecret tag
secret=5b3d576ba5a108c3b7374142bfd02992  notsecretyo

# Test General Secret with optional notsecret tag
api_key=swke6BX0-14v3rYb2Ix32AIfTh9j_H_671dcf8gjpdTbsThiJfxapnAqFs8_kiW4ME-ZPxLmVEgmTxxwlb8Xvw

# Test General Secret with optional notsecret tag
api_key=1b3d576ba5a108c3b7374142bfd02992  notasecret

# Test General Secret with optional notsecret tag
api_key=2b3d576ba5a108c3b7374142bfd02992  yonotsecret

# Test General Secret with optional notsecret tag
api_key=3b3d576ba5a108c3b7374142bfd02992  'notsecret

# Test General Secret with optional notsecret tag
api_key=4b3d576ba5a108c3b7374142bfd02992  notsecret'

# Test General Secret with optional notsecret tag
api_key=5b3d576ba5a108c3b7374142bfd02992  notsecretyo

# this searches for "iss":"argocd"
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJsZWFrdGsiLCJub3RlIjoiZm9yIHRlc3RpbmcgQXJnb0NEIG1hdGNoZXMiLCJ4IjoieHh4IiwiaXNzIjoiYXJnb2NkIn0.VJXhFqDs4FGGHPznFO8ZkwiteXL5sLMeUaGGEXS02h4

# this searches for "iss":"argocd"
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJsZWFrdGsiLCJub3RlIjoiZm9yIHRlc3RpbmcgQXJnb0NEIG1hdGNoZXMiLCJpc3MiOiJhcmdvY2QifQ.IMSC5Gl6CavUctOoILAcHN4YAsH3ihQz7l6mDobClXw

# this searches for "iss":"argocd"
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJsZWFrdGsiLCJub3RlIjoiZm9yIHRlc3RpbmcgQXJnb0NEIG1hdGNoZXMiLCJ4IjoieCIsImlzcyI6ImFyZ29jZCJ9.kHldeGEECY3basc-aTT-3eQvellg8T02h8M02M3v3c0

# this searches for "iss":"kubernetes/serviceaccount"
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJsZWFrdGsiLCJub3RlIjoiZm9yIHRlc3RpbmcgS3ViZSBTQSBtYXRjaGVzIiwieCI6IngiLCJpc3MiOiJrdWJlcm5ldGVzL3NlcnZpY2VhY2NvdW50In0.5BTklQydvs6yaPgO6MJoSDk89wZjX8QMJ51m5bMCHx8

# this searches for "iss":"kubernetes/serviceaccount"
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJsZWFrdGsiLCJub3RlIjoiZm9yIHRlc3RpbmcgS3ViZSBTQSBtYXRjaGVzIiwieCI6Inh4IiwiaXNzIjoia3ViZXJuZXRlcy9zZXJ2aWNlYWNjb3VudCJ9.t8R0N8jjMXv_4E9JKwGfJ5hrsO3del5oJpD6j66O-VU

# this searches for "iss":"kubernetes/serviceaccount"
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJsZWFrdGsiLCJub3RlIjoiZm9yIHRlc3RpbmcgS3ViZSBTQSBtYXRjaGVzIiwieCI6Inh4eCIsImlzcyI6Imt1YmVybmV0ZXMvc2VydmljZWFjY291bnQifQ.JLGKRW3i-CMu5Y_p0y1cgNFokjyVJjs6zO3g_P5nawQ

# this searches for "sub":"system:serviceaccount:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJzeXN0ZW06c2VydmljZWFjY291bnQ6b3BlbnNoaWZ0LW1vbml0b3Jpbmc6cHJvbWV0aGV1cy1rOHMiLCJuYW1lIjoiSm9obiBEb2UiLCJpYXQiOjE1MTYyMzkwMjJ9.ipzDwTMDecOi1y3PCnr18juUFF9KryIreesxYUlC3AI

# this searches for "sub":"system:serviceaccount:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJzeXN0ZW06c2VydmljZWFjY291bnQ6Zm9vIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.68gxpqTqhOhCGxXPe3D86xblMnRc2ciGYn-SMG78IDE

# Should capture in-line container registry secrets
"quay.io": { "auth": "0ec7f53a0637bb3d78ab613e02014934" }

# Should capture in-line container registry secrets
"docker.io": { "auth": "1ec7f53a0637bb3d78ab613e02014934" }

# Should capture in-line container registry secrets
"foo.bar.redhat.io": { "auth": "2ec7f53a0637bb3d78ab613e02014934" }

# Should capture in-line container registry secrets
"foo.bar.redhat.com": { "auth": "3ec7f53a0637bb3d78ab613e02014934" }

# Should capture in-line container registry secrets
"foo.bar.openshift.com": { "auth": "4ec7f53a0637bb3d78ab613e02014934" }

# Should capture in-line container registry secrets
"foo.bar.openshift.io": { "auth": "5ec7f53a0637bb3d78ab613e02014934" }

# Should capture in-line container registry secrets
\"quay.io\": { \"auth\": \"0ec7f53a0637bb3d78ab613e02014934\" }

# Should capture in-line container registry secrets
\"docker.io\": { \"auth\": \"1ec7f53a0637bb3d78ab613e02014934\" }

# Should capture in-line container registry secrets
\"foo.bar.redhat.io\": { \"auth\": \"2ec7f53a0637bb3d78ab613e02014934\" }

# Should capture in-line container registry secrets
\"foo.bar.redhat.com\": { \"auth\": \"3ec7f53a0637bb3d78ab613e02014934\" }

# Should capture in-line container registry secrets
\"foo.bar.openshift.com\": { \"auth\": \"4ec7f53a0637bb3d78ab613e02014934\" }

# Should capture in-line container registry secrets
\"foo.bar.openshift.io\": { \"auth\": \"5ec7f53a0637bb3d78ab613e02014934\" }

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# Should capture in-line container registry secrets
example comes from the test above

# We're starting to look for more registries
"example.com": { "auth": "9ec7f53a0637bb3d78ab613e02014934" }

# Should capture encoded container registry secrets
.dockerconfigjson: 0eyJhdXRocyI6IHsibG9jYWxob3N0IjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa==

# Should capture encoded container registry secrets
.dockerconfigjson: 0eyJhdXRocyI6IHsiIjoge30sICJsb2NhbGhvc3QiOiAiYXV0aCI6ICJtd2FoYWhhaGFoYWhhaGEifX0Kaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

# Should capture encoded container registry secrets
.dockerconfigjson: 0ZG9ja2VyY29uZmlnOiB7ImF1dGhzIjogeyIiOiB7fSwgImxvY2FsaG9zdCI6ICJhdXRoIjogIm13YWhhaGFoYWhhaGFoYSJ9fQoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=

# Should capture encoded container registry secrets
.dockerconfigjson: 0YXsiYXV0aHMiOiB7IiI6IHt9LCAibG9jYWxob3N0IjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa==

# Should capture encoded container registry secrets
.dockerconfigjson: 0YXsiYXV0aHMiOiBieyIiOiB7fSwgImxvY2FsaG9zdCI6ICJhdXRoIjogIm13YWhhaGFoYWhhaGFoYSJ9fQoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=

# Should capture encoded container registry secrets
.dockerconfigjson: 0YTl7ImF1dGhzIjogYnsiIjoge30sICJsb2NhbGhvc3QiOiAiYXV0aCI6ICJtd2FoYWhhaGFoYWhhaGEifX0Kaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

# Should capture encoded container registry secrets
.dockerconfigjson: 0MGE5eyJhdXRocyI6IGJ7IiI6IHt9LCAibG9jYWxob3N0IjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa==

# Should capture encoded container registry secrets
.dockerconfigjson: 0MGE5eyJhdXRocyI6IGJ7IiI6IHt9LCAicmVkaGF0LmlvIjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa==

# Should capture encoded container registry secrets
Data: "1eyJhdXRocyI6IHsibG9jYWxob3N0IjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=="

# Should capture encoded container registry secrets
Data: "1eyJhdXRocyI6IHsiIjoge30sICJsb2NhbGhvc3QiOiAiYXV0aCI6ICJtd2FoYWhhaGFoYWhhaGEifX0Kaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"

# Should capture encoded container registry secrets
Data: "1ZG9ja2VyY29uZmlnOiB7ImF1dGhzIjogeyIiOiB7fSwgImxvY2FsaG9zdCI6ICJhdXRoIjogIm13YWhhaGFoYWhhaGFoYSJ9fQoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa="

# Should capture encoded container registry secrets
Data: "1YXsiYXV0aHMiOiB7IiI6IHt9LCAibG9jYWxob3N0IjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=="

# Should capture encoded container registry secrets
Data: "1YXsiYXV0aHMiOiBieyIiOiB7fSwgImxvY2FsaG9zdCI6ICJhdXRoIjogIm13YWhhaGFoYWhhaGFoYSJ9fQoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa="

# Should capture encoded container registry secrets
Data: "1YTl7ImF1dGhzIjogYnsiIjoge30sICJsb2NhbGhvc3QiOiAiYXV0aCI6ICJtd2FoYWhhaGFoYWhhaGEifX0Kaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"

# Should capture encoded container registry secrets
Data: "1MGE5eyJhdXRocyI6IGJ7IiI6IHt9LCAibG9jYWxob3N0IjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=="

# Should capture encoded container registry secrets
Data: "1MGE5eyJhdXRocyI6IGJ7IiI6IHt9LCAicmVkaGF0LmlvIjogImF1dGgiOiAibXdhaGFoYWhhaGFoYWhhIn19Cgaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=="

# AWS Account ID
arn:aws:iam::128157789812:root

# Should capture slack tokens
xoxp-9204568914-1834568914-1234568914-a53ka1rJ2KAIuj3jalakjalkjaafc

# Should capture container registry passwords.
reg := registry.New("quay.io", "user", "09e25b6fc894c83868715a8cce1ba7d2") // remove later

# Detect tokens for the OpenShift login command
oc login --some-opt --token=sha256~CL9vOGM0koa67eipnogHwP6KmfeAOd6ZwMo88Qo3-Kw --foo --bar --baz

# Even though this looks like it has a variable at the end, it still has a secret contained in it
secret='/YNvEGXEXY9BS/YNvE:${asdf.YNvEGXEXY9BS}'

# Even though this looks like it has a variable at the end, it still has a secret contained in it
secret='aOObST8cGSeh3cYNvEGXEXY9BShQx1EtRdfZ=${asdfae}'

# Should capture Google API keys
Some google key yo AIzaOObST8cGSeh3cYNvEGXEXY9BShQx1EtRdfZ yep here it be!

# Should capture Mailgun API keys
Mailgun_API_KEY=key-fb959af04c12d5d66091256c2b2076d0

# Should capture aws access keys
AWS_ACCESS_KEY=A3TGOBTGY4DIMRXMIYGE

# Should capture aws secret keys
  AWSSecretKey=af60f112a534df0cc1e4d892b5768f3easefasza foo=bar

# Should capture aws secret keys
  AWSSecretKey="aF6/f1+2a534df0cc1e4d892b5768f3easefaszb" foo=bar

# Should capture aws secret keys
  "aws_secret_key": "Af60f112a534df0cc1e4d892b5768f3easef/+zc" foo=bar

# Should capture private key headers
-----BEGIN PGP PRIVATE KEY-----
0b3d576ba5a108c3b7374142bfd029920b3d576ba5a108c3b7374142bfd0299
20b3d576ba5a108c3b7374142bfd02992
-----END PGP PRIVATE KEY-----

# make sure it captures the password but stops at the quote
password = "0b3d576ba5a108c3b7374142bfd02992", some = "other value", example="example"

# make sure mixed case with dashes is caught
password = "Lol-IKR-those-kids-R-Krazy"

# make sure lower case with dashes and numbers is caught
password = "l0l-1kr-th0se-k1ds-r-kr4zy"

# make sure it captures the password but stops at the quote
{"password": "3ae68d9f8ccfc898ee2555a5f8f228b9", "foo": "bar"}

# Make sure the entropy check allows this
password = "RAW(kx#2+c7a)"

# Make sure the password works with xml formatted stuff
<password>$A3ae68d9f8ccfc898ee2555a5f8f228b9</password>

# Make sure it can handle weird formatted stuff
<FooPassword id="new" >$A3ae68d9f8ccfc898ee2555a5f8f228b9</FooPassword><bar>baz</bar>

# make sure it captures the secret but stops at the quote
secret = "$A0b3d576ba5a108c3b7374142bfd02992", some = "other value"

# make sure it captures the secret and can include _key
secret_key = "766a929d93c9ef30ce3d72d6384eb6fa"

# make sure it captures the secret and can include -key
secret-key = "766a929d93c9ef30ce3d72d6384eb6fa"

# make sure it captures the secret but stops at the quote
{"secret": "$A3ae68d9f8ccfc898ee2555a5f8f228b9", "foo": "bar"}

# Make sure the entropy check allows this
secret = "RAW(kx#2+c7a)"

# Make sure the secret works with xml formatted stuff
<secret>$A3ae68d9f8ccfc898ee2555a5f8f228b9</secret>

# Make sure it can handle weird formatted stuff
<FooSecret id="new" >$A3ae68d9f8ccfc898ee2555a5f8f228b9</FooSecret><bar>baz</bar>

# WP DB Password
define(    'DB_PASSWORD', '$c8e$743df9d386d895}');

# WP DB Auth Key
define('AUTH_KEY',         'kzgllO;k$F_-W68 Fl*iEekX;-pn =fNS(;c9nDKt;5RW(&jtESXsW9+PhQFS!Tv');

# Secure Auth Key
define('SECURE_AUTH_KEY',  ',,F|NHKh>=+y.gy%B32Ff!s~MJp$L,]~xEK|e3H)7| 4hX]!/Ky@V(esZa?0D#H*');

# Logged In Key
define('LOGGED_IN_KEY',    'k7o7@~oee{u,MG KFBJq0M`-iJ0H0hs)m-@i/RsgwZ{No~JQ+)2A<Ryd+|t<8.[a');

# Nonce Key
define('NONCE_KEY',        'f54j6Auj0NT8g;5-^zk}yZ`vN^8/7!6=%5bS>GUu{04~#E*a~WdGX<%>Aa<Ke}K8');

# Auth Salt
define('AUTH_SALT',        '?PULIL7?y%Ub=[~rw+5Pg^!$UrrOpn*Pr(MFBdF-+ZMH#oKsZ{KskZY9m/i|<pkK');

# Secure Auth Salt
define('SECURE_AUTH_SALT', 'of~0;WuAmEBP4~rfM)1Q.Oc0U=g^t|d%h.Ui8w<v4;A47FGs0}@Hk>&g?p*hDoQs');

# Logged In Salt
define('LOGGED_IN_SALT',   'WTc*{p+XT((_#^NxhoU)[7NAg};Q?`+0wpkia>oA]hF-TB2lC GM!~aM=-Hqw4,+');

# Nonce Salt
define('NONCE_SALT',       '^[_9^w_,UPMuJ2-}7=y<|v=y$#xftY[klEW3zt,Y}bB tG4d):p9Fd;$imF[lGqR');

# See https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
<access-token>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</access-token>

# See https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
<access-token>ghp_16C7e42F292c6912E7710c838347Ae178B4a</access-token>

# See https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
token='gho_16C7e42F292c6912E7710c838347Ae178B4a'

# See https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
'gt-token': 'ghu_16C7e42F292c6912E7710c838347Ae178B4a'

# See https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
ghs_16C7e42F292c6912E7710c838347Ae178B4a

# See https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
ghr_16C7e42F292c6912E7710c838347Ae178B4a

# From gitlab.com
my_cred=glpat-LwnfdsSHX1aSGxsqsPUX

# From gitlab.com
trigger_sec=glptt-bcce2270d3c9c90c0a4320b6e8742fb450c27cc9

# From gitlab.com
runner_sec=glrt-64NXmvdxFL_9cliRha7y

# From gitlab.com
runner_sec=GR134894164NXmvdxFL_9cliRha7y

# Should catch PyPI upload tokens
Foo bar baz pypi-AgEIcHlwaS5vcmcCJDU0ZTIxMWRiLWNlMjYtNDM3ZS05YjJlLWYzYTk5NmE2NGJjMgACJXsicGVybWlzc2lvbnMiOiAidXNlciIsICJ2ZXJzaW9uIjogMX0AAAYgWzvnJ7sF-57Jw_YGg04aZTPCeuRpXrHBhAsPRfofZGc foo

# Should capture basic auth for http
http://username:1d902de68e4113f5855a6c88314cec6a@foo.bar.leaktk.org/foo/bar/baz

# Should capture basic auth for https
https://username:2d902de68e4113f5855a6c88314cec6a@foo.bar.leaktk.org

# Should catch protocols other than http
rsync://username:9d902de68e4113f5855a6c88314cec6a@foo.bar.leaktk.org

# Likely encrypted values
secret='ENC[RSA,tUf83Ex0oSbDGa8vaU1hGqesODG9J4j40EgLClQYrwNT]'
# Likely encrypted values
secret='RU5DW1JTQSx0VWY4M0V4MG9TYkRHYTh2YVUxaEdxZXNPREc5SjRqNDBFZ0xDbFFZcndOVF0='
# Likely encrypted values
secret='ENC[AES256_GCM,tUf83Ex0oSbDGa8vaU1hGqesODG9J4j40EgLClQYrwNT]'
# Likely encrypted values
secret='RU5DW0FFUzI1Nl9HQ00sdFVmODNFeDBvU2JER2E4dmFVMWhHcWVzT0RHOUo0ajQwRWdMQ2xRWXJ3TlRd'
# Likely encrypted values
secret_key='ENC[RSA,tUf83Ex0oSbDGa8vaU1hGqesODG9J4j40EgLClQYrwNT]'
# Likely encrypted values
secret_key='RU5DW1JTQSx0VWY4M0V4MG9TYkRHYTh2YVUxaEdxZXNPREc5SjRqNDBFZ0xDbFFZcndOVF0='
# Likely encrypted values
secret_key='ENC[AES256_GCM,tUf83Ex0oSbDGa8vaU1hGqesODG9J4j40EgLClQYrwNT]'
# Likely encrypted values
secret_key='RU5DW0FFUzI1Nl9HQ00sdFVmODNFeDBvU2JER2E4dmFVMWhHcWVzT0RHOUo0ajQwRWdMQ2xRWXJ3TlRd'
# Likely encrypted values
password='ENC[RSA,tUf83Ex0oSbDGa8vaU1hGqesODG9J4j40EgLClQYrwNT]'
# Likely encrypted values
password='RU5DW1JTQSx0VWY4M0V4MG9TYkRHYTh2YVUxaEdxZXNPREc5SjRqNDBFZ0xDbFFZcndOVF0='
# Likely encrypted values
password='ENC[AES256_GCM,tUf83Ex0oSbDGa8vaU1hGqesODG9J4j40EgLClQYrwNT]'
# Likely encrypted values
password='RU5DW0FFUzI1Nl9HQ00sdFVmODNFeDBvU2JER2E4dmFVMWhHcWVzT0RHOUo0ajQwRWdMQ2xRWXJ3TlRd'
# URL default passwords or placeholders
scheme://user:$(TOKEN)@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:$TOKEN@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:$encrypted$@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:${TOKEN}@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:%q@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:&lt;password&gt;@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://:key_1234@dotenv.org
# URL default passwords or placeholders
scheme://user:[TOKEN]@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:\${GHTOKEN}@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:__MONGO_PASSWORD__@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:candlepin@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:default@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:keylime@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:password@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:password-foo-bar-baz@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:postgres@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:prisma@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:rabbitmq@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:redhat@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:some-placeholder-token@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:userpass@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:{TOKEN}@foo.bar.leaktk.org:443
# URL default passwords or placeholders
scheme://user:"$TOKEN"@foo.bar.leaktk.org:443
# FP/Placeholder in URL User and Password
https?://_<username>_[:_<password>_]@_<hostname>_/_<path>_
# FP/Placeholder in URL User and Password
https://f4c38c5:$githubpac@github.com
# FP/Placeholder in URL User and Password
https://f4c38c5:27BZdTpuIl9u...pE+SpU4C2vQSY=@github.com
# FP/Placeholder in URL User and Password
http://username:pGeGXSEFgGSogv48jcTFaJip@ip:port
# FP/Placeholder in URL User and Password
http://username:pGeGXSEFgGSogv48jcTFaJip@example.com
# FP/Placeholder in URL User and Password
https://test:adfa;dkj;aek;j@example.com
# FP/Placeholder in URL User and Password
https://test:adfa;dkj;aek;j@git.example.com
# FP/Placeholder in URL User and Password
https://examle.com/foo:current@Cacheable
# FP/Placeholder in URL User and Password
http://some-host:8080,org.java.stuff@1fc032aa
# Wordpress placeholder values
define('AUTH_KEY', '${AUTH_KEY}');
# Wordpress placeholder values
define('AUTH_KEY', '{{AUTH_KEY}}');
# Wordpress placeholder values
define('AUTH_KEY', '$WP_AUTH_KEY');
# Wordpress placeholder values
define('SECURE_AUTH_KEY', '$WP_SECURE_AUTH_KEY');
# Wordpress placeholder values
define('LOGGED_IN_KEY', '$WP_LOGGED_IN_KEY');
# Wordpress placeholder values
define('NONCE_KEY', '$WP_NONCE_KEY');
# Wordpress placeholder values
define('AUTH_SALT', '$WP_AUTH_SALT');
# Wordpress placeholder values
define('SECURE_AUTH_SALT', '$WP_SECURE_AUTH_SALT');
# Wordpress placeholder values
define('LOGGED_IN_SALT', '$WP_LOGGED_IN_SALT');
# Wordpress placeholder values
define('NONCE_SALT', '$WP_NONCE_SALT');
# placeholder value
oc login --some-opt --token=sha256~<some-token-here-yo> --server=localhost
# redacted container registry auth
{"auths":{"cloud.openshift.com":{"auth":"TJpnU0y1pDBkEKTcwzSAaoNV3jmkZz66LM4Jd6EBx0I.....TJpnU0y1pDBkEKTcwzSAaoNV3jmkZz66LM4Jd6EBx0I==","email":"user@example.com"},"quay.io":{"auth":"TJpnU0y1pDBkEKTcwzSAaoNV3jmkZz66LM4Jd6EBx0INo...","email":"user@example.com"},"
# placeholder wrappet in cdata tags
<password><![CDATA[${password}]]></password>
# Placeholder
<Password>$SomePlaceholderForAdminPassword$</Password>
# Placeholder
<Password><![CDATA[$SomePlaceholderForAdminPassword$]]></Password>
# This is just code looking for headers
if (privateKey === "-----BEGIN RSA PRIVATE KEY-----") { # adding_so_that_the_tests_think_this_is_closed_and_dont_go_to_another_key_is_closed-----END PRIVATE KEY-----
# This is just code looking for headers
where("-----BEGIN RSA PRIVATE KEY-----") # adding_so_that_the_tests_think_this_is_closed_and_dont_go_to_another_key_is_closed-----END PRIVATE KEY-----
# Redacted value
-----BEGIN PRIVATE KEY-----*******************************************************************************-----END PRIVATE KEY-----
# Redacted value
-----BEGIN PRIVATE KEY-----\nMIIEvgIBADANBg...W17oy4Qgj7OLNB\n-----END PRIVATE KEY-----
# Code snippet
out.write(("-----BEGIN PRIVATE KEY-----\n").getBytes(Charsets.UTF_8)); # adding_so_that_the_tests_think_this_is_closed_and_dont_go_to_another_key_is_closed-----END PRIVATE KEY-----
# placeholder value
-----BEGIN RSA PRIVATE KEY-----\nxxx\nxxx\nxxx\n-----END RSA PRIVATE KEY-----
# Part of a jq lookup
jq -rj '"password: ",.some_password,"\n"'
# Contains EXAMPLE base64 encoded
AWS_SECRET_ACCESS_KEY: RVhBTVBMRWlpdVdSRUhGY3JISTN6SzBMZGVub1Avc0tmOW9aejhhbXYyY29rNlBja1E9Cg==
# Ignore AWS access keys marked as samples
Sample:<pre>AGPAIDCX94X8GQXML0OX</pre>
# Contains something that looks like an AWS access key
YCu38AvUpJs01zHxja7Z9qhZWVAfjxP5H/A3TE8SENGWR1ZFQ206BR+Q06phGgStkRWAHCQ
# Contains a host later on so it looks like basic auth
https://some.testing.server:443".\u0000[xxx\r\n[user@foo.bar.leaktk.org
# Test Cert
testCert = '-----BEGIN RSA PRIVATE KEY----- # adding_so_that_the_tests_think_this_is_closed_and_dont_go_to_another_key_is_closed-----END PRIVATE KEY-----
# These are placeholder values
"secret": "__GITLAB_OAUTH_SECRET__"
# This is code
@aws-cdk/aws-ecs:disableExplicitDeploymentControllerForCircuitBreaker
# Placeholder value
"smtpSecret": "INSTALLATION_PREFIX-smtp",
# This is code
@aws-cdk/aws-codepipeline:crossAccountKeyAliasStackSafeResourceName
# This is a presigned AWS URL
https://s3.amazonaws.com/examplebucket/test.txt?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=A3TGOBTGY4DIMRXMIYGE/20130721/us-east-1/s3/aws4_request&X-Amz-Date=20130721T201207Z&X-Amz-Expires=86400&X-Amz-SignedHeaders=host&X-Amz-Signature=%3Csignature-value%3E
# Looks similar to a AWS secret key
awslb/podsvc.yaml": testExtendedTestdataRouterAwslbPodsvcYaml
# Avoid matching things ending with = due to the high FP count
 Af80f1/2+53=df0xc1e/d892b5768f3easefasz=
# Allowed by gitleaks:allow
AWS_ACCESS_KEY=A3TGOBTGY4DIMRXMIYGE #gitleaks:allow
# Allowed by gitleaks:allow different comment type
AWS_ACCESS_KEY=A3TGOBTGY4DIMRXMIYGE // gitleaks:allow
# Placeholder slack token
xoxp-some-slack-access-token-these-are-very-long-and-start-with-xo
# Placeholder slack token
'token': 'xoxa-123456789abcdef',
# Meets the criteria for a potential aws secret key
 b/drivers/media/platform/bcm2835/Kconfig
# contains a substring that looks like a google api key
asdfasdfaeaAIzaOObST8cGSeh3cYNvEGXEXY9BShQx1EtRdfZasdfasmlajasdfasdfasdf
# Happens to have the right number of characters for an AWS key inside part of the URL
http://mirror.centos.org/centos/8-stream/BaseOS/aarch64/os/Packages/libffi-3.1-23.el8.aarch64.rpm
# Not a facebook key
7e90d3e171128c6e6fa038ff3cb5f387fb=7e90d3e171128c6e6fa038ff3cb5f387
# Shouldn't match such a short key
-----BEGIN EC PRIVATE KEY-----\nkey\n-----END EC PRIVATE KEY-----
# Shouldn't match such a short key
-----BEGIN RSA PRIVATE KEY-----\nREPLACE_ME\n-----END RSA PRIVATE KEY-----
# Shouldn't match an inline key with spaces in it
-----BEGIN PRIVATE KEY-----\nMII.....RSA KEY WITHOUT LINEBREAKS\n-----END PRIVATE KEY-----
# placeholder value
cps.Data["metadata"] = []byte("password: " + tokenValue + "
username: NEW_VALUE")
# Ignore placeholders
<FooPassword id="new" >{{PLACEHOLDER}}</FooPassword><bar>baz</bar>
# Ignore placeholders
<FooPassword id="new" >{PLACEHOLDER}</FooPassword><bar>baz</bar>
# Ignore placeholders
<FooPassword id="new" >$PLACEHOLDER_123</FooPassword><bar>baz</bar>
# Ignore placeholders
<FooPassword id="new" >${PLACEHOLDER}</FooPassword><bar>baz</bar>
# UUID should not be matched
<UserSecretsId>c007cd12-1fe7-4843-947e-ddecfc0d8913</UserSecretsId>
# Ignore placeholders
<FooSecret id="new" >{{PLACEHOLDER}}</FooSecret><bar>baz</bar>
# Ignore placeholders
<FooSecret id="new" >{PLACEHOLDER}</FooSecret><bar>baz</bar>
# Ignore placeholders
<FooSecret id="new" >${PLACEHOLDER}</FooSecret><bar>baz</bar>
# Should not match because it's not in a htpasswd file
user456:$jhI1AC9LG01KrQS$FzPCZHMe$jXiw5.8UevKx29pRH4AsT/
# this is close to the regex for an aws key
_Somef0lder/or/Somepath/that0snotakeyyepa.sh
# It is too short to be a real token
ghr_16C7e42F292c69
# ignore these arn matches
administration_role_arn: arn:aws:iam::123456789012:role/AWSCloudFormationStackSetAdministrationRole
# ignore these arn matches
arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly
# This isn't an AWS secret key! I promise!
if awsEnvVars[i].Name == RegistryStorageS3RegionendpointEnvVarKey && bsl.Spec.Config[S3URL] != "" {
# Placeholder value for wordpress passwords
define('DB_PASSWORD', 'password');
# Placeholder value for an Access Token
GITHUB_PERSONAL_ACCESS_TOKEN=ghp_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
# Should not capture things formated like a mg api key without mg/mailgun in the prefix
some-random-thing=key-fb959af04c12d5d66091256c2b2076d0
# from code
os_password=sys.argv[3]
# ignore localhost db host in wp-config
define("DB_HOST", "localhost");
# ignore placeholder slack-token
token: xoxb-1234-56789abcdefghijklmnop
# ignore placeholder password
password=\$MIRROR_OS_PASS&#34;
# ignore likely documentation
password=&#34;placeholder&#34;,
# ignore likely documentation
password=\u0026#34;placeholder&#34;,
# ignore likely placeholders
secret=foo-baz_.baz
# Fake token
AWS_TOKEN = "ABCDEFGHIJKLMNOPQRSTVWXYZabcdefghijklmnopqrstvwxyz0123=="
# Placeholder
password=\$MIRROR_OS_PASS&#34;
# Just a comparison
password===this.options.password}var
# Secret placeholder
secret=@(some_client_secret)
# Secret placeholder
secret=/data/stuff.auth
# Secret placeholder
PASSWORD=${DatabasePassword:?
# Part of a regex for replacing passwords
PASSWORD=.*/foobarbaz2aAfaea
# ignore unicode snippets for now
PASSWORD=\u90DB\u10L8\u10XB\u1098
# AWS key placeholder
aws_secret_access_key = ABCDEFGHIJKLMNOPQRSTUVWXYZabcd1234567890

# A fragment from a compiled yarn file
"Input new password: "),E=n.limitMessage;!v;)n.limit=h,n.limitMessage=E,I=Yr.question(t,n),n.limit=[I,""],n.limitMessage=

# Should not match because it's a localhost password
https://foo:CoolPWYo!@localhost

# More placeholder secrets (should not match)
password="TheBlurstOfTimes"
password="D3faultEntry"
secretKey: 'awsSecret123',

# Looks like a secret but is just referencing one (should not match)
IBMCloudCredentialsEnvSecretKey = "ibm-credentials.env"

# Setting a password in a dict (should match)
config["password"] = '8bxd576ba5a108c3b7374142bfd02992'
config['secret'] = "9bxd576ba5a108c3b7374142bfd02993"