conjur-api 5.3.8.pre.194 → 5.3.8.pre.319
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/VERSION +1 -1
- metadata +21 -191
- data/.codeclimate.yml +0 -10
- data/.dockerignore +0 -1
- data/.github/CODEOWNERS +0 -10
- data/.gitignore +0 -32
- data/.gitleaks.toml +0 -219
- data/.overcommit.yml +0 -16
- data/.project +0 -18
- data/.rubocop.yml +0 -3
- data/.rubocop_settings.yml +0 -86
- data/.rubocop_todo.yml +0 -709
- data/.yardopts +0 -1
- data/CHANGELOG.md +0 -435
- data/CONTRIBUTING.md +0 -141
- data/Dockerfile +0 -16
- data/Gemfile +0 -7
- data/Jenkinsfile +0 -168
- data/LICENSE +0 -202
- data/README.md +0 -162
- data/Rakefile +0 -47
- data/SECURITY.md +0 -42
- data/bin/parse-changelog.sh +0 -12
- data/ci/configure_v4.sh +0 -12
- data/ci/configure_v5.sh +0 -14
- data/ci/submit-coverage +0 -36
- data/conjur-api.gemspec +0 -40
- data/dev/Dockerfile.dev +0 -12
- data/dev/docker-compose.yml +0 -56
- data/dev/start +0 -22
- data/dev/stop +0 -5
- data/docker-compose.yml +0 -76
- data/example/demo_v4.rb +0 -49
- data/example/demo_v5.rb +0 -57
- data/features/authenticators.feature +0 -33
- data/features/authn_local.feature +0 -32
- data/features/exists.feature +0 -37
- data/features/group.feature +0 -11
- data/features/host.feature +0 -50
- data/features/host_factory_create_host.feature +0 -28
- data/features/host_factory_token.feature +0 -63
- data/features/load_policy.feature +0 -61
- data/features/members.feature +0 -51
- data/features/new_api.feature +0 -36
- data/features/permitted.feature +0 -70
- data/features/permitted_roles.feature +0 -30
- data/features/public_keys.feature +0 -11
- data/features/resource_fields.feature +0 -53
- data/features/role_fields.feature +0 -15
- data/features/rotate_api_key.feature +0 -13
- data/features/step_definitions/api_steps.rb +0 -18
- data/features/step_definitions/policy_steps.rb +0 -75
- data/features/step_definitions/result_steps.rb +0 -7
- data/features/support/env.rb +0 -18
- data/features/support/hooks.rb +0 -3
- data/features/support/world.rb +0 -12
- data/features/update_password.feature +0 -14
- data/features/user.feature +0 -58
- data/features/variable_fields.feature +0 -20
- data/features/variable_value.feature +0 -60
- data/features_v4/authn_local.feature +0 -27
- data/features_v4/exists.feature +0 -29
- data/features_v4/host.feature +0 -18
- data/features_v4/host_factory_token.feature +0 -49
- data/features_v4/members.feature +0 -39
- data/features_v4/permitted.feature +0 -15
- data/features_v4/permitted_roles.feature +0 -8
- data/features_v4/resource_fields.feature +0 -47
- data/features_v4/rotate_api_key.feature +0 -13
- data/features_v4/step_definitions/api_steps.rb +0 -17
- data/features_v4/step_definitions/result_steps.rb +0 -3
- data/features_v4/support/env.rb +0 -23
- data/features_v4/support/policy.yml +0 -34
- data/features_v4/support/world.rb +0 -12
- data/features_v4/variable_fields.feature +0 -11
- data/features_v4/variable_value.feature +0 -54
- data/lib/conjur/acts_as_resource.rb +0 -123
- data/lib/conjur/acts_as_role.rb +0 -142
- data/lib/conjur/acts_as_rolsource.rb +0 -32
- data/lib/conjur/acts_as_user.rb +0 -68
- data/lib/conjur/api/authenticators.rb +0 -35
- data/lib/conjur/api/authn.rb +0 -125
- data/lib/conjur/api/host_factories.rb +0 -71
- data/lib/conjur/api/ldap_sync.rb +0 -38
- data/lib/conjur/api/policies.rb +0 -56
- data/lib/conjur/api/pubkeys.rb +0 -53
- data/lib/conjur/api/resources.rb +0 -109
- data/lib/conjur/api/roles.rb +0 -98
- data/lib/conjur/api/router/v4.rb +0 -206
- data/lib/conjur/api/router/v5.rb +0 -248
- data/lib/conjur/api/variables.rb +0 -59
- data/lib/conjur/api.rb +0 -105
- data/lib/conjur/base.rb +0 -355
- data/lib/conjur/base_object.rb +0 -57
- data/lib/conjur/build_object.rb +0 -47
- data/lib/conjur/cache.rb +0 -26
- data/lib/conjur/cert_utils.rb +0 -63
- data/lib/conjur/cidr.rb +0 -71
- data/lib/conjur/configuration.rb +0 -460
- data/lib/conjur/escape.rb +0 -129
- data/lib/conjur/exceptions.rb +0 -4
- data/lib/conjur/group.rb +0 -41
- data/lib/conjur/has_attributes.rb +0 -98
- data/lib/conjur/host.rb +0 -27
- data/lib/conjur/host_factory.rb +0 -75
- data/lib/conjur/host_factory_token.rb +0 -78
- data/lib/conjur/id.rb +0 -71
- data/lib/conjur/layer.rb +0 -9
- data/lib/conjur/log.rb +0 -72
- data/lib/conjur/log_source.rb +0 -60
- data/lib/conjur/policy.rb +0 -34
- data/lib/conjur/policy_load_result.rb +0 -61
- data/lib/conjur/query_string.rb +0 -12
- data/lib/conjur/resource.rb +0 -29
- data/lib/conjur/role.rb +0 -29
- data/lib/conjur/role_grant.rb +0 -85
- data/lib/conjur/routing.rb +0 -29
- data/lib/conjur/user.rb +0 -40
- data/lib/conjur/variable.rb +0 -208
- data/lib/conjur/webservice.rb +0 -30
- data/lib/conjur-api/version.rb +0 -24
- data/lib/conjur-api.rb +0 -2
- data/publish.sh +0 -5
- data/spec/api/host_factories_spec.rb +0 -34
- data/spec/api_spec.rb +0 -254
- data/spec/base_object_spec.rb +0 -13
- data/spec/cert_utils_spec.rb +0 -173
- data/spec/cidr_spec.rb +0 -34
- data/spec/configuration_spec.rb +0 -330
- data/spec/has_attributes_spec.rb +0 -63
- data/spec/helpers/errors_matcher.rb +0 -34
- data/spec/helpers/request_helpers.rb +0 -10
- data/spec/id_spec.rb +0 -29
- data/spec/ldap_sync_spec.rb +0 -21
- data/spec/log_source_spec.rb +0 -13
- data/spec/log_spec.rb +0 -42
- data/spec/roles_spec.rb +0 -24
- data/spec/spec_helper.rb +0 -113
- data/spec/ssl_spec.rb +0 -109
- data/spec/uri_escape_spec.rb +0 -21
- data/test.sh +0 -73
- data/tmp/.keep +0 -0
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 705a21655aa742f9a4d6494d0ae5500c4970ae248a189a3d5f55de55f3375923
|
4
|
+
data.tar.gz: 6f57b05120bfe3f338f82690e0c82b1c532d5ea882cd9ae71d90c6ba2d40efa0
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 6c66bc9a3858610d878a4d75d785a666ba983fa9d336e6e1f90140fb66bbd4820cd1757ecb1d6622d1688adaef1d544801233461412775a2fabc675e9365adf6
|
7
|
+
data.tar.gz: 35059d4a89df055e4bcba143b9b1e6ebe74fb75582280f9ec8e725f70b9476e567ab43e65442121dd9ba6f6bdbd881ace302bca8210b75a41e7ff3f45f40b40c
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
5.3.8-
|
1
|
+
5.3.8-319
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: conjur-api
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 5.3.8.pre.
|
4
|
+
version: 5.3.8.pre.319
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- CyberArk Maintainers
|
8
|
-
autorequire:
|
8
|
+
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-
|
11
|
+
date: 2022-07-19 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: rest-client
|
@@ -226,6 +226,20 @@ dependencies:
|
|
226
226
|
- - ">="
|
227
227
|
- !ruby/object:Gem::Version
|
228
228
|
version: '0'
|
229
|
+
- !ruby/object:Gem::Dependency
|
230
|
+
name: nokogiri
|
231
|
+
requirement: !ruby/object:Gem::Requirement
|
232
|
+
requirements:
|
233
|
+
- - ">="
|
234
|
+
- !ruby/object:Gem::Version
|
235
|
+
version: '0'
|
236
|
+
type: :development
|
237
|
+
prerelease: false
|
238
|
+
version_requirements: !ruby/object:Gem::Requirement
|
239
|
+
requirements:
|
240
|
+
- - ">="
|
241
|
+
- !ruby/object:Gem::Version
|
242
|
+
version: '0'
|
229
243
|
description: Conjur API
|
230
244
|
email:
|
231
245
|
- conj_maintainers@cyberark.com
|
@@ -233,152 +247,12 @@ executables: []
|
|
233
247
|
extensions: []
|
234
248
|
extra_rdoc_files: []
|
235
249
|
files:
|
236
|
-
- ".codeclimate.yml"
|
237
|
-
- ".dockerignore"
|
238
|
-
- ".github/CODEOWNERS"
|
239
|
-
- ".gitignore"
|
240
|
-
- ".gitleaks.toml"
|
241
|
-
- ".overcommit.yml"
|
242
|
-
- ".project"
|
243
|
-
- ".rubocop.yml"
|
244
|
-
- ".rubocop_settings.yml"
|
245
|
-
- ".rubocop_todo.yml"
|
246
|
-
- ".yardopts"
|
247
|
-
- CHANGELOG.md
|
248
|
-
- CONTRIBUTING.md
|
249
|
-
- Dockerfile
|
250
|
-
- Gemfile
|
251
|
-
- Jenkinsfile
|
252
|
-
- LICENSE
|
253
|
-
- README.md
|
254
|
-
- Rakefile
|
255
|
-
- SECURITY.md
|
256
250
|
- VERSION
|
257
|
-
- bin/parse-changelog.sh
|
258
|
-
- ci/configure_v4.sh
|
259
|
-
- ci/configure_v5.sh
|
260
|
-
- ci/submit-coverage
|
261
|
-
- conjur-api.gemspec
|
262
|
-
- dev/Dockerfile.dev
|
263
|
-
- dev/docker-compose.yml
|
264
|
-
- dev/start
|
265
|
-
- dev/stop
|
266
|
-
- docker-compose.yml
|
267
|
-
- example/demo_v4.rb
|
268
|
-
- example/demo_v5.rb
|
269
|
-
- features/authenticators.feature
|
270
|
-
- features/authn_local.feature
|
271
|
-
- features/exists.feature
|
272
|
-
- features/group.feature
|
273
|
-
- features/host.feature
|
274
|
-
- features/host_factory_create_host.feature
|
275
|
-
- features/host_factory_token.feature
|
276
|
-
- features/load_policy.feature
|
277
|
-
- features/members.feature
|
278
|
-
- features/new_api.feature
|
279
|
-
- features/permitted.feature
|
280
|
-
- features/permitted_roles.feature
|
281
|
-
- features/public_keys.feature
|
282
|
-
- features/resource_fields.feature
|
283
|
-
- features/role_fields.feature
|
284
|
-
- features/rotate_api_key.feature
|
285
|
-
- features/step_definitions/api_steps.rb
|
286
|
-
- features/step_definitions/policy_steps.rb
|
287
|
-
- features/step_definitions/result_steps.rb
|
288
|
-
- features/support/env.rb
|
289
|
-
- features/support/hooks.rb
|
290
|
-
- features/support/world.rb
|
291
|
-
- features/update_password.feature
|
292
|
-
- features/user.feature
|
293
|
-
- features/variable_fields.feature
|
294
|
-
- features/variable_value.feature
|
295
|
-
- features_v4/authn_local.feature
|
296
|
-
- features_v4/exists.feature
|
297
|
-
- features_v4/host.feature
|
298
|
-
- features_v4/host_factory_token.feature
|
299
|
-
- features_v4/members.feature
|
300
|
-
- features_v4/permitted.feature
|
301
|
-
- features_v4/permitted_roles.feature
|
302
|
-
- features_v4/resource_fields.feature
|
303
|
-
- features_v4/rotate_api_key.feature
|
304
|
-
- features_v4/step_definitions/api_steps.rb
|
305
|
-
- features_v4/step_definitions/result_steps.rb
|
306
|
-
- features_v4/support/env.rb
|
307
|
-
- features_v4/support/policy.yml
|
308
|
-
- features_v4/support/world.rb
|
309
|
-
- features_v4/variable_fields.feature
|
310
|
-
- features_v4/variable_value.feature
|
311
|
-
- lib/conjur-api.rb
|
312
|
-
- lib/conjur-api/version.rb
|
313
|
-
- lib/conjur/acts_as_resource.rb
|
314
|
-
- lib/conjur/acts_as_role.rb
|
315
|
-
- lib/conjur/acts_as_rolsource.rb
|
316
|
-
- lib/conjur/acts_as_user.rb
|
317
|
-
- lib/conjur/api.rb
|
318
|
-
- lib/conjur/api/authenticators.rb
|
319
|
-
- lib/conjur/api/authn.rb
|
320
|
-
- lib/conjur/api/host_factories.rb
|
321
|
-
- lib/conjur/api/ldap_sync.rb
|
322
|
-
- lib/conjur/api/policies.rb
|
323
|
-
- lib/conjur/api/pubkeys.rb
|
324
|
-
- lib/conjur/api/resources.rb
|
325
|
-
- lib/conjur/api/roles.rb
|
326
|
-
- lib/conjur/api/router/v4.rb
|
327
|
-
- lib/conjur/api/router/v5.rb
|
328
|
-
- lib/conjur/api/variables.rb
|
329
|
-
- lib/conjur/base.rb
|
330
|
-
- lib/conjur/base_object.rb
|
331
|
-
- lib/conjur/build_object.rb
|
332
|
-
- lib/conjur/cache.rb
|
333
|
-
- lib/conjur/cert_utils.rb
|
334
|
-
- lib/conjur/cidr.rb
|
335
|
-
- lib/conjur/configuration.rb
|
336
|
-
- lib/conjur/escape.rb
|
337
|
-
- lib/conjur/exceptions.rb
|
338
|
-
- lib/conjur/group.rb
|
339
|
-
- lib/conjur/has_attributes.rb
|
340
|
-
- lib/conjur/host.rb
|
341
|
-
- lib/conjur/host_factory.rb
|
342
|
-
- lib/conjur/host_factory_token.rb
|
343
|
-
- lib/conjur/id.rb
|
344
|
-
- lib/conjur/layer.rb
|
345
|
-
- lib/conjur/log.rb
|
346
|
-
- lib/conjur/log_source.rb
|
347
|
-
- lib/conjur/policy.rb
|
348
|
-
- lib/conjur/policy_load_result.rb
|
349
|
-
- lib/conjur/query_string.rb
|
350
|
-
- lib/conjur/resource.rb
|
351
|
-
- lib/conjur/role.rb
|
352
|
-
- lib/conjur/role_grant.rb
|
353
|
-
- lib/conjur/routing.rb
|
354
|
-
- lib/conjur/user.rb
|
355
|
-
- lib/conjur/variable.rb
|
356
|
-
- lib/conjur/webservice.rb
|
357
|
-
- publish.sh
|
358
|
-
- spec/api/host_factories_spec.rb
|
359
|
-
- spec/api_spec.rb
|
360
|
-
- spec/base_object_spec.rb
|
361
|
-
- spec/cert_utils_spec.rb
|
362
|
-
- spec/cidr_spec.rb
|
363
|
-
- spec/configuration_spec.rb
|
364
|
-
- spec/has_attributes_spec.rb
|
365
|
-
- spec/helpers/errors_matcher.rb
|
366
|
-
- spec/helpers/request_helpers.rb
|
367
|
-
- spec/id_spec.rb
|
368
|
-
- spec/ldap_sync_spec.rb
|
369
|
-
- spec/log_source_spec.rb
|
370
|
-
- spec/log_spec.rb
|
371
|
-
- spec/roles_spec.rb
|
372
|
-
- spec/spec_helper.rb
|
373
|
-
- spec/ssl_spec.rb
|
374
|
-
- spec/uri_escape_spec.rb
|
375
|
-
- test.sh
|
376
|
-
- tmp/.keep
|
377
251
|
homepage: https://github.com/cyberark/conjur-api-ruby/
|
378
252
|
licenses:
|
379
253
|
- Apache-2.0
|
380
254
|
metadata: {}
|
381
|
-
post_install_message:
|
255
|
+
post_install_message:
|
382
256
|
rdoc_options: []
|
383
257
|
require_paths:
|
384
258
|
- lib
|
@@ -393,52 +267,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
393
267
|
- !ruby/object:Gem::Version
|
394
268
|
version: 1.3.1
|
395
269
|
requirements: []
|
396
|
-
|
397
|
-
|
398
|
-
signing_key:
|
270
|
+
rubygems_version: 3.2.33
|
271
|
+
signing_key:
|
399
272
|
specification_version: 4
|
400
273
|
summary: Conjur API
|
401
|
-
test_files:
|
402
|
-
- features/authenticators.feature
|
403
|
-
- features/authn_local.feature
|
404
|
-
- features/exists.feature
|
405
|
-
- features/group.feature
|
406
|
-
- features/host.feature
|
407
|
-
- features/host_factory_create_host.feature
|
408
|
-
- features/host_factory_token.feature
|
409
|
-
- features/load_policy.feature
|
410
|
-
- features/members.feature
|
411
|
-
- features/new_api.feature
|
412
|
-
- features/permitted.feature
|
413
|
-
- features/permitted_roles.feature
|
414
|
-
- features/public_keys.feature
|
415
|
-
- features/resource_fields.feature
|
416
|
-
- features/role_fields.feature
|
417
|
-
- features/rotate_api_key.feature
|
418
|
-
- features/step_definitions/api_steps.rb
|
419
|
-
- features/step_definitions/policy_steps.rb
|
420
|
-
- features/step_definitions/result_steps.rb
|
421
|
-
- features/support/env.rb
|
422
|
-
- features/support/hooks.rb
|
423
|
-
- features/support/world.rb
|
424
|
-
- features/update_password.feature
|
425
|
-
- features/user.feature
|
426
|
-
- features/variable_fields.feature
|
427
|
-
- features/variable_value.feature
|
428
|
-
- spec/api/host_factories_spec.rb
|
429
|
-
- spec/api_spec.rb
|
430
|
-
- spec/base_object_spec.rb
|
431
|
-
- spec/cert_utils_spec.rb
|
432
|
-
- spec/cidr_spec.rb
|
433
|
-
- spec/configuration_spec.rb
|
434
|
-
- spec/has_attributes_spec.rb
|
435
|
-
- spec/helpers/errors_matcher.rb
|
436
|
-
- spec/helpers/request_helpers.rb
|
437
|
-
- spec/id_spec.rb
|
438
|
-
- spec/ldap_sync_spec.rb
|
439
|
-
- spec/log_source_spec.rb
|
440
|
-
- spec/log_spec.rb
|
441
|
-
- spec/roles_spec.rb
|
442
|
-
- spec/spec_helper.rb
|
443
|
-
- spec/ssl_spec.rb
|
444
|
-
- spec/uri_escape_spec.rb
|
274
|
+
test_files: []
|
data/.codeclimate.yml
DELETED
data/.dockerignore
DELETED
@@ -1 +0,0 @@
|
|
1
|
-
Gemfile.lock
|
data/.github/CODEOWNERS
DELETED
@@ -1,10 +0,0 @@
|
|
1
|
-
* @cyberark/community-and-integrations-team @conjurinc/community-and-integrations-team @conjurdemos/community-and-integrations-team
|
2
|
-
|
3
|
-
# Changes to .trivyignore require Security Architect approval
|
4
|
-
.trivyignore @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects
|
5
|
-
|
6
|
-
# Changes to .codeclimate.yml require Quality Architect approval
|
7
|
-
.codeclimate.yml @cyberark/quality-architects @conjurinc/quality-architects @conjurdemos/quality-architects
|
8
|
-
|
9
|
-
# Changes to SECURITY.md require Security Architect approval
|
10
|
-
SECURITY.md @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects
|
data/.gitignore
DELETED
@@ -1,32 +0,0 @@
|
|
1
|
-
features/reports
|
2
|
-
features_v4/reports
|
3
|
-
dev/data_key
|
4
|
-
.DS_Store
|
5
|
-
build_number
|
6
|
-
*.gem
|
7
|
-
*.rbc
|
8
|
-
.bundle
|
9
|
-
.config
|
10
|
-
.yardoc
|
11
|
-
Gemfile.lock
|
12
|
-
InstalledFiles
|
13
|
-
_yardoc
|
14
|
-
coverage
|
15
|
-
coverage_v4
|
16
|
-
doc/
|
17
|
-
lib/bundler/man
|
18
|
-
pkg
|
19
|
-
rdoc
|
20
|
-
spec/reports
|
21
|
-
test/tmp
|
22
|
-
test/version_tmp
|
23
|
-
tmp
|
24
|
-
.kateproject.d
|
25
|
-
.rvmrc
|
26
|
-
.idea
|
27
|
-
|
28
|
-
# rspec
|
29
|
-
.rspec
|
30
|
-
|
31
|
-
# Script to connect to jon's lxc appliances
|
32
|
-
lxcsh.rb
|
data/.gitleaks.toml
DELETED
@@ -1,219 +0,0 @@
|
|
1
|
-
title = "Conjur API Ruby gitleaks config"
|
2
|
-
|
3
|
-
# This is the config file for gitleaks. You can configure gitleaks what to search for and what to whitelist.
|
4
|
-
# If GITLEAKS_CONFIG environment variable
|
5
|
-
# is set, gitleaks will load configurations from that path. If option --config-path is set, gitleaks will load
|
6
|
-
# configurations from that path. Gitleaks does not whitelist anything by default.
|
7
|
-
# - https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04B-3_Meli_paper.pdf
|
8
|
-
# - https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json
|
9
|
-
[[rules]]
|
10
|
-
description = "AWS Client ID"
|
11
|
-
regex = '''(A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}'''
|
12
|
-
tags = ["key", "AWS"]
|
13
|
-
|
14
|
-
[[rules]]
|
15
|
-
description = "AWS Secret Key"
|
16
|
-
regex = '''(?i)aws(.{0,20})?(?-i)['\"][0-9a-zA-Z\/+]{40}['\"]'''
|
17
|
-
tags = ["key", "AWS"]
|
18
|
-
|
19
|
-
[[rules]]
|
20
|
-
description = "AWS MWS key"
|
21
|
-
regex = '''amzn\.mws\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}'''
|
22
|
-
tags = ["key", "AWS", "MWS"]
|
23
|
-
|
24
|
-
[[rules]]
|
25
|
-
description = "PKCS8"
|
26
|
-
regex = '''-----BEGIN PRIVATE KEY-----'''
|
27
|
-
tags = ["key", "PKCS8"]
|
28
|
-
|
29
|
-
[[rules]]
|
30
|
-
description = "RSA"
|
31
|
-
regex = '''-----BEGIN RSA PRIVATE KEY-----'''
|
32
|
-
tags = ["key", "RSA"]
|
33
|
-
|
34
|
-
[[rules]]
|
35
|
-
description = "SSH"
|
36
|
-
regex = '''-----BEGIN OPENSSH PRIVATE KEY-----'''
|
37
|
-
tags = ["key", "SSH"]
|
38
|
-
|
39
|
-
[[rules]]
|
40
|
-
description = "PGP"
|
41
|
-
regex = '''-----BEGIN PGP PRIVATE KEY BLOCK-----'''
|
42
|
-
tags = ["key", "PGP"]
|
43
|
-
|
44
|
-
[[rules]]
|
45
|
-
description = "Facebook Secret Key"
|
46
|
-
regex = '''(?i)(facebook|fb)(.{0,20})?(?-i)['\"][0-9a-f]{32}['\"]'''
|
47
|
-
tags = ["key", "Facebook"]
|
48
|
-
|
49
|
-
[[rules]]
|
50
|
-
description = "Facebook Client ID"
|
51
|
-
regex = '''(?i)(facebook|fb)(.{0,20})?['\"][0-9]{13,17}['\"]'''
|
52
|
-
tags = ["key", "Facebook"]
|
53
|
-
|
54
|
-
[[rules]]
|
55
|
-
description = "Facebook access token"
|
56
|
-
regex = '''EAACEdEose0cBA[0-9A-Za-z]+'''
|
57
|
-
tags = ["key", "Facebook"]
|
58
|
-
|
59
|
-
[[rules]]
|
60
|
-
description = "Twitter Secret Key"
|
61
|
-
regex = '''(?i)twitter(.{0,20})?['\"][0-9a-z]{35,44}['\"]'''
|
62
|
-
tags = ["key", "Twitter"]
|
63
|
-
|
64
|
-
[[rules]]
|
65
|
-
description = "Twitter Client ID"
|
66
|
-
regex = '''(?i)twitter(.{0,20})?['\"][0-9a-z]{18,25}['\"]'''
|
67
|
-
tags = ["client", "Twitter"]
|
68
|
-
|
69
|
-
[[rules]]
|
70
|
-
description = "Github"
|
71
|
-
regex = '''(?i)github(.{0,20})?(?-i)['\"][0-9a-zA-Z]{35,40}['\"]'''
|
72
|
-
tags = ["key", "Github"]
|
73
|
-
|
74
|
-
[[rules]]
|
75
|
-
description = "LinkedIn Client ID"
|
76
|
-
regex = '''(?i)linkedin(.{0,20})?(?-i)['\"][0-9a-z]{12}['\"]'''
|
77
|
-
tags = ["client", "Twitter"]
|
78
|
-
|
79
|
-
[[rules]]
|
80
|
-
description = "LinkedIn Secret Key"
|
81
|
-
regex = '''(?i)linkedin(.{0,20})?['\"][0-9a-z]{16}['\"]'''
|
82
|
-
tags = ["secret", "Twitter"]
|
83
|
-
|
84
|
-
[[rules]]
|
85
|
-
description = "Slack"
|
86
|
-
regex = '''xox[baprs]-([0-9a-zA-Z]{10,48})?'''
|
87
|
-
tags = ["key", "Slack"]
|
88
|
-
|
89
|
-
[[rules]]
|
90
|
-
description = "EC"
|
91
|
-
regex = '''-----BEGIN EC PRIVATE KEY-----'''
|
92
|
-
tags = ["key", "EC"]
|
93
|
-
|
94
|
-
[[rules]]
|
95
|
-
description = "Generic API key"
|
96
|
-
regex = '''(?i)(api_key|apikey)(.{0,20})?['|"][0-9a-zA-Z]{32,45}['|"]'''
|
97
|
-
tags = ["key", "API", "generic"]
|
98
|
-
|
99
|
-
[[rules]]
|
100
|
-
description = "Generic Secret"
|
101
|
-
regex = '''(?i)secret(.{0,20})?['|"][0-9a-zA-Z]{32,45}['|"]'''
|
102
|
-
tags = ["key", "Secret", "generic"]
|
103
|
-
|
104
|
-
[[rules]]
|
105
|
-
description = "Google API key"
|
106
|
-
regex = '''AIza[0-9A-Za-z\\-_]{35}'''
|
107
|
-
tags = ["key", "Google"]
|
108
|
-
|
109
|
-
[[rules]]
|
110
|
-
description = "Google Cloud Platform API key"
|
111
|
-
regex = '''(?i)(google|gcp|youtube|drive|yt)(.{0,20})?['\"][AIza[0-9a-z\\-_]{35}]['\"]'''
|
112
|
-
tags = ["key", "Google", "GCP"]
|
113
|
-
|
114
|
-
[[rules]]
|
115
|
-
description = "Google OAuth"
|
116
|
-
regex = '''(?i)(google|gcp|auth)(.{0,20})?['"][0-9]+-[0-9a-z_]{32}\.apps\.googleusercontent\.com['"]'''
|
117
|
-
tags = ["key", "Google", "OAuth"]
|
118
|
-
|
119
|
-
[[rules]]
|
120
|
-
description = "Google OAuth access token"
|
121
|
-
regex = '''ya29\.[0-9A-Za-z\-_]+'''
|
122
|
-
tags = ["key", "Google", "OAuth"]
|
123
|
-
|
124
|
-
[[rules]]
|
125
|
-
description = "Heroku API key"
|
126
|
-
regex = '''(?i)heroku(.{0,20})?['"][0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}['"]'''
|
127
|
-
tags = ["key", "Heroku"]
|
128
|
-
|
129
|
-
[[rules]]
|
130
|
-
description = "MailChimp API key"
|
131
|
-
regex = '''(?i)(mailchimp|mc)(.{0,20})?['"][0-9a-f]{32}-us[0-9]{1,2}['"]'''
|
132
|
-
tags = ["key", "Mailchimp"]
|
133
|
-
|
134
|
-
[[rules]]
|
135
|
-
description = "Mailgun API key"
|
136
|
-
regex = '''(?i)(mailgun|mg)(.{0,20})?['"][0-9a-z]{32}['"]'''
|
137
|
-
tags = ["key", "Mailgun"]
|
138
|
-
|
139
|
-
[[rules]]
|
140
|
-
description = "Password in URL"
|
141
|
-
regex = '''[a-zA-Z]{3,10}:\/\/[^\/\s:@]{3,20}:[^\/\s:@]{3,20}@.{1,100}\/?.?'''
|
142
|
-
tags = ["key", "URL", "generic"]
|
143
|
-
|
144
|
-
[[rules]]
|
145
|
-
description = "PayPal Braintree access token"
|
146
|
-
regex = '''access_token\$production\$[0-9a-z]{16}\$[0-9a-f]{32}'''
|
147
|
-
tags = ["key", "Paypal"]
|
148
|
-
|
149
|
-
[[rules]]
|
150
|
-
description = "Picatic API key"
|
151
|
-
regex = '''sk_live_[0-9a-z]{32}'''
|
152
|
-
tags = ["key", "Picatic"]
|
153
|
-
|
154
|
-
[[rules]]
|
155
|
-
description = "Slack Webhook"
|
156
|
-
regex = '''https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}'''
|
157
|
-
tags = ["key", "slack"]
|
158
|
-
|
159
|
-
[[rules]]
|
160
|
-
description = "Stripe API key"
|
161
|
-
regex = '''(?i)stripe(.{0,20})?['\"][sk|rk]_live_[0-9a-zA-Z]{24}'''
|
162
|
-
tags = ["key", "Stripe"]
|
163
|
-
|
164
|
-
[[rules]]
|
165
|
-
description = "Square access token"
|
166
|
-
regex = '''sq0atp-[0-9A-Za-z\-_]{22}'''
|
167
|
-
tags = ["key", "square"]
|
168
|
-
|
169
|
-
[[rules]]
|
170
|
-
description = "Square OAuth secret"
|
171
|
-
regex = '''sq0csp-[0-9A-Za-z\\-_]{43}'''
|
172
|
-
tags = ["key", "square"]
|
173
|
-
|
174
|
-
[[rules]]
|
175
|
-
description = "Twilio API key"
|
176
|
-
regex = '''(?i)twilio(.{0,20})?['\"][0-9a-f]{32}['\"]'''
|
177
|
-
tags = ["key", "twilio"]
|
178
|
-
|
179
|
-
[whitelist]
|
180
|
-
files = [
|
181
|
-
# "(.*?)(jpg|gif|doc|pdf|bin)$",
|
182
|
-
".gitleaks.toml",
|
183
|
-
"spec/ssl_spec.rb" # unit test file that has sample RSA key
|
184
|
-
]
|
185
|
-
regexes = [
|
186
|
-
"mysql://username:password@mysql.somehost.com/mydb", # sample mysql connection string from code comment
|
187
|
-
"http://master:master@localhost", # sample URI in unit test data
|
188
|
-
"http://admin:%5E6feWZpr@localhost" # sample URI in unit test data
|
189
|
-
]
|
190
|
-
|
191
|
-
# Additional Examples
|
192
|
-
|
193
|
-
# [[rules]]
|
194
|
-
# description = "Generic Key"
|
195
|
-
# regex = '''(?i)key(.{0,6})?(:|=|=>|:=)'''
|
196
|
-
# entropies = [
|
197
|
-
# "4.1-4.3",
|
198
|
-
# "5.5-6.3",
|
199
|
-
# ]
|
200
|
-
# entropyROI = "line"
|
201
|
-
# filetypes = [".go", ".py", ".c"]
|
202
|
-
# tags = ["key"]
|
203
|
-
# severity = "8"
|
204
|
-
#
|
205
|
-
#
|
206
|
-
# [[rules]]
|
207
|
-
# description = "Generic Key"
|
208
|
-
# regex = '''(?i)key(.{0,6})?(:|=|=>|:=)'''
|
209
|
-
# entropies = ["4.1-4.3"]
|
210
|
-
# filetypes = [".gee"]
|
211
|
-
# entropyROI = "line"
|
212
|
-
# tags = ["key"]
|
213
|
-
# severity = "medium"
|
214
|
-
|
215
|
-
# [[rules]]
|
216
|
-
# description = "Any pem file"
|
217
|
-
# filetypes = [".key"]
|
218
|
-
# tags = ["pem"]
|
219
|
-
# severity = "high"
|
data/.overcommit.yml
DELETED
@@ -1,16 +0,0 @@
|
|
1
|
-
PreCommit:
|
2
|
-
ALL:
|
3
|
-
problem_on_unmodified_line: warn
|
4
|
-
|
5
|
-
RuboCop:
|
6
|
-
enabled: true
|
7
|
-
flags: [
|
8
|
-
'--format=emacs', '--force-exclusion', '--display-cop-names',
|
9
|
-
'-c', '.rubocop_settings.yml']
|
10
|
-
|
11
|
-
Reek:
|
12
|
-
enabled: true
|
13
|
-
flags: [
|
14
|
-
'--single-line', '--no-color',
|
15
|
-
'-c', '/dev/null']
|
16
|
-
|
data/.project
DELETED
@@ -1,18 +0,0 @@
|
|
1
|
-
<?xml version="1.0" encoding="UTF-8"?>
|
2
|
-
<projectDescription>
|
3
|
-
<name>conjur-api</name>
|
4
|
-
<comment></comment>
|
5
|
-
<projects>
|
6
|
-
</projects>
|
7
|
-
<buildSpec>
|
8
|
-
<buildCommand>
|
9
|
-
<name>com.aptana.ide.core.unifiedBuilder</name>
|
10
|
-
<arguments>
|
11
|
-
</arguments>
|
12
|
-
</buildCommand>
|
13
|
-
</buildSpec>
|
14
|
-
<natures>
|
15
|
-
<nature>com.aptana.ruby.core.rubynature</nature>
|
16
|
-
<nature>com.aptana.projects.webnature</nature>
|
17
|
-
</natures>
|
18
|
-
</projectDescription>
|
data/.rubocop.yml
DELETED
data/.rubocop_settings.yml
DELETED
@@ -1,86 +0,0 @@
|
|
1
|
-
AllCops:
|
2
|
-
TargetRubyVersion: 2.5
|
3
|
-
|
4
|
-
# These non-default settings best reflect our current code style.
|
5
|
-
Style/MethodDefParentheses:
|
6
|
-
EnforcedStyle: require_no_parentheses_except_multiline
|
7
|
-
Style/PercentLiteralDelimiters:
|
8
|
-
PreferredDelimiters:
|
9
|
-
"%i": ()
|
10
|
-
"%w": ()
|
11
|
-
Style/RescueStandardError:
|
12
|
-
EnforcedStyle: implicit
|
13
|
-
Style/AndOr:
|
14
|
-
EnforcedStyle: conditionals
|
15
|
-
Layout/IndentHeredoc:
|
16
|
-
EnforcedStyle: squiggly
|
17
|
-
Layout/MultilineMethodCallBraceLayout:
|
18
|
-
EnforcedStyle: symmetrical
|
19
|
-
Layout/SpaceAroundBlockParameters:
|
20
|
-
EnforcedStyleInsidePipes: no_space
|
21
|
-
Layout/SpaceAroundEqualsInParameterDefault:
|
22
|
-
EnforcedStyle: space
|
23
|
-
Layout/SpaceBeforeBlockBraces:
|
24
|
-
EnforcedStyle: space
|
25
|
-
EnforcedStyleForEmptyBraces: space
|
26
|
-
Layout/SpaceInsideBlockBraces:
|
27
|
-
EnforcedStyle: space
|
28
|
-
EnforcedStyleForEmptyBraces: no_space
|
29
|
-
SpaceBeforeBlockParameters: true
|
30
|
-
Layout/SpaceInsideHashLiteralBraces:
|
31
|
-
EnforcedStyle: space
|
32
|
-
EnforcedStyleForEmptyBraces: no_space
|
33
|
-
Layout/SpaceInsideParens:
|
34
|
-
EnforcedStyle: no_space
|
35
|
-
Layout/SpaceInsideReferenceBrackets:
|
36
|
-
EnforcedStyle: no_space
|
37
|
-
EnforcedStyleForEmptyBrackets: no_space
|
38
|
-
Layout/TrailingBlankLines:
|
39
|
-
EnforcedStyle: final_newline
|
40
|
-
Style/BarePercentLiterals:
|
41
|
-
EnforcedStyle: percent_q
|
42
|
-
|
43
|
-
# Either style of these arguably has its place depending on the context.
|
44
|
-
Style/FormatStringToken:
|
45
|
-
Enabled: false
|
46
|
-
Style/LambdaCall:
|
47
|
-
Enabled: false
|
48
|
-
Style/StringLiterals:
|
49
|
-
Enabled: false
|
50
|
-
Layout/SpaceInsideArrayLiteralBrackets:
|
51
|
-
Enabled: false
|
52
|
-
# However, these score at comparatively fewer offences, so I'll
|
53
|
-
# leave it here in case we want to enforce a style after all.
|
54
|
-
EnforcedStyle: no_space
|
55
|
-
EnforcedStyleForEmptyBrackets: no_space
|
56
|
-
|
57
|
-
# The default configuration of these makes it hard to use proportional fonts.
|
58
|
-
Layout/MultilineMethodCallIndentation:
|
59
|
-
EnforcedStyle: indented
|
60
|
-
Layout/AlignParameters:
|
61
|
-
EnforcedStyle: with_fixed_indentation
|
62
|
-
Layout/EndAlignment:
|
63
|
-
EnforcedStyleAlignWith: start_of_line
|
64
|
-
Layout/ExtraSpacing:
|
65
|
-
AllowForAlignment: false
|
66
|
-
Layout/IndentFirstArgument:
|
67
|
-
EnforcedStyle: consistent
|
68
|
-
Layout/IndentFirstHashElement:
|
69
|
-
EnforcedStyle: consistent
|
70
|
-
Layout/MultilineMethodCallIndentation:
|
71
|
-
EnforcedStyle: indented
|
72
|
-
Layout/MultilineOperationIndentation:
|
73
|
-
EnforcedStyle: indented
|
74
|
-
Layout/SpaceAroundOperators:
|
75
|
-
AllowForAlignment: false
|
76
|
-
Layout/SpaceBeforeFirstArg:
|
77
|
-
AllowForAlignment: false
|
78
|
-
|
79
|
-
Metrics/BlockLength:
|
80
|
-
CountComments: false
|
81
|
-
Max: 25
|
82
|
-
Exclude:
|
83
|
-
- 'Rakefile'
|
84
|
-
- '**/*.rake'
|
85
|
-
- 'spec/**/*.rb'
|
86
|
-
- 'conjur-api.gemspec'
|