From b4f51a4669c1fd06b0d5091c001f3d9763978ac5 Mon Sep 17 00:00:00 2001 From: Salar Abbas Date: Wed, 25 Sep 2024 23:39:49 +0500 Subject: [PATCH] feat(gitleaks-rules): added gitleaks rules specific to azure sensitive values --- CHANGELOG.md | 1 + global/scripts/gitleaks/.gitleaks.toml | 5 +++++ 2 files changed, 6 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 7d66160b..6367e5af 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -22,6 +22,7 @@ Exceptions are acceptable depending on the circumstances (critical bug fixes tha - added `clone.sh` script into the root - added Python pipelines for GitHub actions - added `test:build` for `golang` projects for `gitlab` +- added rules for `azure` specific sensitive values - added command to run `e2e` tests ### Changed diff --git a/global/scripts/gitleaks/.gitleaks.toml b/global/scripts/gitleaks/.gitleaks.toml index 2265f0ea..1999fbd9 100644 --- a/global/scripts/gitleaks/.gitleaks.toml +++ b/global/scripts/gitleaks/.gitleaks.toml @@ -556,6 +556,11 @@ id = "Social Security Number" description = "Social Security Number" regex = '''\d{3}-\d{2}-\d{4}''' +[[rules]] +id = "Confidential UUID" +description = "Hardcoded Application ID (UUID)" +regex = '''[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}''' + [allowlist] description = "global allow lists" regexes = ['''219-09-9999''', '''078-05-1120''', '''(9[0-9]{2}|666)-\d{2}-\d{4}''', '''(LTAI)(?i)[a-z0-9]{20}''']