conjur-api 5.3.8.pre.3 → 5.3.8.pre.8

Sign up to get free protection for your applications and to get access to all the features.
Files changed (150) hide show
  1. checksums.yaml +4 -4
  2. data/VERSION +1 -1
  3. metadata +2 -193
  4. data/.codeclimate.yml +0 -10
  5. data/.dockerignore +0 -1
  6. data/.github/CODEOWNERS +0 -10
  7. data/.gitignore +0 -32
  8. data/.gitleaks.toml +0 -219
  9. data/.overcommit.yml +0 -16
  10. data/.project +0 -18
  11. data/.rubocop.yml +0 -3
  12. data/.rubocop_settings.yml +0 -86
  13. data/.rubocop_todo.yml +0 -709
  14. data/.yardopts +0 -1
  15. data/CHANGELOG.md +0 -448
  16. data/CONTRIBUTING.md +0 -138
  17. data/Dockerfile +0 -16
  18. data/Gemfile +0 -7
  19. data/Jenkinsfile +0 -137
  20. data/LICENSE +0 -202
  21. data/README.md +0 -162
  22. data/Rakefile +0 -47
  23. data/SECURITY.md +0 -42
  24. data/bin/parse-changelog.sh +0 -12
  25. data/ci/configure_v4.sh +0 -12
  26. data/ci/configure_v5.sh +0 -19
  27. data/ci/oauth/keycloak/create_client +0 -18
  28. data/ci/oauth/keycloak/create_user +0 -21
  29. data/ci/oauth/keycloak/fetch_certificate +0 -18
  30. data/ci/oauth/keycloak/keycloak_functions.sh +0 -71
  31. data/ci/oauth/keycloak/standalone.xml +0 -578
  32. data/ci/oauth/keycloak/wait_for_server +0 -56
  33. data/ci/submit-coverage +0 -36
  34. data/conjur-api.gemspec +0 -41
  35. data/dev/Dockerfile.dev +0 -12
  36. data/dev/docker-compose.yml +0 -56
  37. data/dev/start +0 -22
  38. data/dev/stop +0 -5
  39. data/docker-compose.yml +0 -98
  40. data/example/demo_v4.rb +0 -49
  41. data/example/demo_v5.rb +0 -57
  42. data/features/authenticators.feature +0 -41
  43. data/features/authn.feature +0 -14
  44. data/features/authn_local.feature +0 -32
  45. data/features/exists.feature +0 -37
  46. data/features/group.feature +0 -11
  47. data/features/host.feature +0 -50
  48. data/features/host_factory_create_host.feature +0 -28
  49. data/features/host_factory_token.feature +0 -63
  50. data/features/load_policy.feature +0 -61
  51. data/features/members.feature +0 -51
  52. data/features/new_api.feature +0 -36
  53. data/features/permitted.feature +0 -70
  54. data/features/permitted_roles.feature +0 -30
  55. data/features/public_keys.feature +0 -11
  56. data/features/resource_fields.feature +0 -53
  57. data/features/role_fields.feature +0 -15
  58. data/features/rotate_api_key.feature +0 -13
  59. data/features/step_definitions/api_steps.rb +0 -52
  60. data/features/step_definitions/policy_steps.rb +0 -134
  61. data/features/step_definitions/result_steps.rb +0 -11
  62. data/features/support/env.rb +0 -19
  63. data/features/support/hooks.rb +0 -3
  64. data/features/support/world.rb +0 -12
  65. data/features/update_password.feature +0 -14
  66. data/features/user.feature +0 -58
  67. data/features/variable_fields.feature +0 -20
  68. data/features/variable_value.feature +0 -60
  69. data/features_v4/authn_local.feature +0 -27
  70. data/features_v4/exists.feature +0 -29
  71. data/features_v4/host.feature +0 -18
  72. data/features_v4/host_factory_token.feature +0 -49
  73. data/features_v4/members.feature +0 -39
  74. data/features_v4/permitted.feature +0 -15
  75. data/features_v4/permitted_roles.feature +0 -8
  76. data/features_v4/resource_fields.feature +0 -47
  77. data/features_v4/rotate_api_key.feature +0 -13
  78. data/features_v4/step_definitions/api_steps.rb +0 -17
  79. data/features_v4/step_definitions/result_steps.rb +0 -3
  80. data/features_v4/support/env.rb +0 -23
  81. data/features_v4/support/policy.yml +0 -34
  82. data/features_v4/support/world.rb +0 -12
  83. data/features_v4/variable_fields.feature +0 -11
  84. data/features_v4/variable_value.feature +0 -54
  85. data/lib/conjur/acts_as_resource.rb +0 -123
  86. data/lib/conjur/acts_as_role.rb +0 -142
  87. data/lib/conjur/acts_as_rolsource.rb +0 -32
  88. data/lib/conjur/acts_as_user.rb +0 -68
  89. data/lib/conjur/api/authenticators.rb +0 -43
  90. data/lib/conjur/api/authn.rb +0 -144
  91. data/lib/conjur/api/host_factories.rb +0 -71
  92. data/lib/conjur/api/ldap_sync.rb +0 -38
  93. data/lib/conjur/api/policies.rb +0 -56
  94. data/lib/conjur/api/pubkeys.rb +0 -53
  95. data/lib/conjur/api/resources.rb +0 -109
  96. data/lib/conjur/api/roles.rb +0 -98
  97. data/lib/conjur/api/router/v4.rb +0 -206
  98. data/lib/conjur/api/router/v5.rb +0 -269
  99. data/lib/conjur/api/variables.rb +0 -59
  100. data/lib/conjur/api.rb +0 -105
  101. data/lib/conjur/base.rb +0 -355
  102. data/lib/conjur/base_object.rb +0 -57
  103. data/lib/conjur/build_object.rb +0 -47
  104. data/lib/conjur/cache.rb +0 -26
  105. data/lib/conjur/cert_utils.rb +0 -63
  106. data/lib/conjur/cidr.rb +0 -71
  107. data/lib/conjur/configuration.rb +0 -460
  108. data/lib/conjur/escape.rb +0 -129
  109. data/lib/conjur/exceptions.rb +0 -4
  110. data/lib/conjur/group.rb +0 -41
  111. data/lib/conjur/has_attributes.rb +0 -98
  112. data/lib/conjur/host.rb +0 -27
  113. data/lib/conjur/host_factory.rb +0 -75
  114. data/lib/conjur/host_factory_token.rb +0 -78
  115. data/lib/conjur/id.rb +0 -71
  116. data/lib/conjur/layer.rb +0 -9
  117. data/lib/conjur/log.rb +0 -72
  118. data/lib/conjur/log_source.rb +0 -60
  119. data/lib/conjur/policy.rb +0 -34
  120. data/lib/conjur/policy_load_result.rb +0 -61
  121. data/lib/conjur/query_string.rb +0 -12
  122. data/lib/conjur/resource.rb +0 -29
  123. data/lib/conjur/role.rb +0 -29
  124. data/lib/conjur/role_grant.rb +0 -85
  125. data/lib/conjur/routing.rb +0 -29
  126. data/lib/conjur/user.rb +0 -40
  127. data/lib/conjur/variable.rb +0 -208
  128. data/lib/conjur/webservice.rb +0 -30
  129. data/lib/conjur-api/version.rb +0 -24
  130. data/lib/conjur-api.rb +0 -2
  131. data/publish.sh +0 -5
  132. data/spec/api/host_factories_spec.rb +0 -34
  133. data/spec/api_spec.rb +0 -254
  134. data/spec/base_object_spec.rb +0 -13
  135. data/spec/cert_utils_spec.rb +0 -173
  136. data/spec/cidr_spec.rb +0 -34
  137. data/spec/configuration_spec.rb +0 -330
  138. data/spec/has_attributes_spec.rb +0 -63
  139. data/spec/helpers/errors_matcher.rb +0 -34
  140. data/spec/helpers/request_helpers.rb +0 -10
  141. data/spec/id_spec.rb +0 -29
  142. data/spec/ldap_sync_spec.rb +0 -21
  143. data/spec/log_source_spec.rb +0 -13
  144. data/spec/log_spec.rb +0 -42
  145. data/spec/roles_spec.rb +0 -24
  146. data/spec/spec_helper.rb +0 -113
  147. data/spec/ssl_spec.rb +0 -109
  148. data/spec/uri_escape_spec.rb +0 -21
  149. data/test.sh +0 -76
  150. data/tmp/.keep +0 -0
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 6e542258c40773ab19a843a4f736ecc11aaebf6af17845d18ccd7f66ad9984be
4
- data.tar.gz: aab3735f0a132de15e9d70d87ad6382fe8678339e2bab0f4d9164985095077c0
3
+ metadata.gz: c250411bf6baacde80f802c20a9eb44034046414044f532b0f665fc8f06d531c
4
+ data.tar.gz: 2936dbfb56ecc7e30469981b69398a70133260370aff99d4c20b8e963ab1b8ca
5
5
  SHA512:
6
- metadata.gz: 0bf6b1653ade8fa65e6a6f63c87303a5112df9c61871a783dcc6bae21a698bf11b214c74fccbf8124182150d086db233bb26bb803e78a85c5fc9afc93e461882
7
- data.tar.gz: 9dbf3a5fca29ba9dd88d1e087985956b2fc7414a06fca45d20c6bafda903abbe5dbc5a3df245b084651e6592b97ea980b603cb076cbd72e0e5316a47d6f3de7e
6
+ metadata.gz: f208001dd1dbd5e6b19ab4775172614b32efa23142e19bbbd0eac039a6dae361c6df96a0cef4c79e6911eff227b9ac1d2077542b1fab7b91d41f2a5864015b9a
7
+ data.tar.gz: 77b95cc8ac04c83c17aff2f3929b5bac79b48602cd42493ec20f971160c5e4a7cd3c7a3cdd7f2c739d25e18f90cb466596204d43f7d1455a040a43cb79599830
data/VERSION CHANGED
@@ -1 +1 @@
1
- 5.3.8-3
1
+ 5.3.8-8
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: conjur-api
3
3
  version: !ruby/object:Gem::Version
4
- version: 5.3.8.pre.3
4
+ version: 5.3.8.pre.8
5
5
  platform: ruby
6
6
  authors:
7
7
  - CyberArk Maintainers
@@ -247,154 +247,7 @@ executables: []
247
247
  extensions: []
248
248
  extra_rdoc_files: []
249
249
  files:
250
- - ".codeclimate.yml"
251
- - ".dockerignore"
252
- - ".github/CODEOWNERS"
253
- - ".gitignore"
254
- - ".gitleaks.toml"
255
- - ".overcommit.yml"
256
- - ".project"
257
- - ".rubocop.yml"
258
- - ".rubocop_settings.yml"
259
- - ".rubocop_todo.yml"
260
- - ".yardopts"
261
- - CHANGELOG.md
262
- - CONTRIBUTING.md
263
- - Dockerfile
264
- - Gemfile
265
- - Jenkinsfile
266
- - LICENSE
267
- - README.md
268
- - Rakefile
269
- - SECURITY.md
270
250
  - VERSION
271
- - bin/parse-changelog.sh
272
- - ci/configure_v4.sh
273
- - ci/configure_v5.sh
274
- - ci/oauth/keycloak/create_client
275
- - ci/oauth/keycloak/create_user
276
- - ci/oauth/keycloak/fetch_certificate
277
- - ci/oauth/keycloak/keycloak_functions.sh
278
- - ci/oauth/keycloak/standalone.xml
279
- - ci/oauth/keycloak/wait_for_server
280
- - ci/submit-coverage
281
- - conjur-api.gemspec
282
- - dev/Dockerfile.dev
283
- - dev/docker-compose.yml
284
- - dev/start
285
- - dev/stop
286
- - docker-compose.yml
287
- - example/demo_v4.rb
288
- - example/demo_v5.rb
289
- - features/authenticators.feature
290
- - features/authn.feature
291
- - features/authn_local.feature
292
- - features/exists.feature
293
- - features/group.feature
294
- - features/host.feature
295
- - features/host_factory_create_host.feature
296
- - features/host_factory_token.feature
297
- - features/load_policy.feature
298
- - features/members.feature
299
- - features/new_api.feature
300
- - features/permitted.feature
301
- - features/permitted_roles.feature
302
- - features/public_keys.feature
303
- - features/resource_fields.feature
304
- - features/role_fields.feature
305
- - features/rotate_api_key.feature
306
- - features/step_definitions/api_steps.rb
307
- - features/step_definitions/policy_steps.rb
308
- - features/step_definitions/result_steps.rb
309
- - features/support/env.rb
310
- - features/support/hooks.rb
311
- - features/support/world.rb
312
- - features/update_password.feature
313
- - features/user.feature
314
- - features/variable_fields.feature
315
- - features/variable_value.feature
316
- - features_v4/authn_local.feature
317
- - features_v4/exists.feature
318
- - features_v4/host.feature
319
- - features_v4/host_factory_token.feature
320
- - features_v4/members.feature
321
- - features_v4/permitted.feature
322
- - features_v4/permitted_roles.feature
323
- - features_v4/resource_fields.feature
324
- - features_v4/rotate_api_key.feature
325
- - features_v4/step_definitions/api_steps.rb
326
- - features_v4/step_definitions/result_steps.rb
327
- - features_v4/support/env.rb
328
- - features_v4/support/policy.yml
329
- - features_v4/support/world.rb
330
- - features_v4/variable_fields.feature
331
- - features_v4/variable_value.feature
332
- - lib/conjur-api.rb
333
- - lib/conjur-api/version.rb
334
- - lib/conjur/acts_as_resource.rb
335
- - lib/conjur/acts_as_role.rb
336
- - lib/conjur/acts_as_rolsource.rb
337
- - lib/conjur/acts_as_user.rb
338
- - lib/conjur/api.rb
339
- - lib/conjur/api/authenticators.rb
340
- - lib/conjur/api/authn.rb
341
- - lib/conjur/api/host_factories.rb
342
- - lib/conjur/api/ldap_sync.rb
343
- - lib/conjur/api/policies.rb
344
- - lib/conjur/api/pubkeys.rb
345
- - lib/conjur/api/resources.rb
346
- - lib/conjur/api/roles.rb
347
- - lib/conjur/api/router/v4.rb
348
- - lib/conjur/api/router/v5.rb
349
- - lib/conjur/api/variables.rb
350
- - lib/conjur/base.rb
351
- - lib/conjur/base_object.rb
352
- - lib/conjur/build_object.rb
353
- - lib/conjur/cache.rb
354
- - lib/conjur/cert_utils.rb
355
- - lib/conjur/cidr.rb
356
- - lib/conjur/configuration.rb
357
- - lib/conjur/escape.rb
358
- - lib/conjur/exceptions.rb
359
- - lib/conjur/group.rb
360
- - lib/conjur/has_attributes.rb
361
- - lib/conjur/host.rb
362
- - lib/conjur/host_factory.rb
363
- - lib/conjur/host_factory_token.rb
364
- - lib/conjur/id.rb
365
- - lib/conjur/layer.rb
366
- - lib/conjur/log.rb
367
- - lib/conjur/log_source.rb
368
- - lib/conjur/policy.rb
369
- - lib/conjur/policy_load_result.rb
370
- - lib/conjur/query_string.rb
371
- - lib/conjur/resource.rb
372
- - lib/conjur/role.rb
373
- - lib/conjur/role_grant.rb
374
- - lib/conjur/routing.rb
375
- - lib/conjur/user.rb
376
- - lib/conjur/variable.rb
377
- - lib/conjur/webservice.rb
378
- - publish.sh
379
- - spec/api/host_factories_spec.rb
380
- - spec/api_spec.rb
381
- - spec/base_object_spec.rb
382
- - spec/cert_utils_spec.rb
383
- - spec/cidr_spec.rb
384
- - spec/configuration_spec.rb
385
- - spec/has_attributes_spec.rb
386
- - spec/helpers/errors_matcher.rb
387
- - spec/helpers/request_helpers.rb
388
- - spec/id_spec.rb
389
- - spec/ldap_sync_spec.rb
390
- - spec/log_source_spec.rb
391
- - spec/log_spec.rb
392
- - spec/roles_spec.rb
393
- - spec/spec_helper.rb
394
- - spec/ssl_spec.rb
395
- - spec/uri_escape_spec.rb
396
- - test.sh
397
- - tmp/.keep
398
251
  homepage: https://github.com/cyberark/conjur-api-ruby/
399
252
  licenses:
400
253
  - Apache-2.0
@@ -418,48 +271,4 @@ rubygems_version: 3.2.33
418
271
  signing_key:
419
272
  specification_version: 4
420
273
  summary: Conjur API
421
- test_files:
422
- - features/authenticators.feature
423
- - features/authn.feature
424
- - features/authn_local.feature
425
- - features/exists.feature
426
- - features/group.feature
427
- - features/host.feature
428
- - features/host_factory_create_host.feature
429
- - features/host_factory_token.feature
430
- - features/load_policy.feature
431
- - features/members.feature
432
- - features/new_api.feature
433
- - features/permitted.feature
434
- - features/permitted_roles.feature
435
- - features/public_keys.feature
436
- - features/resource_fields.feature
437
- - features/role_fields.feature
438
- - features/rotate_api_key.feature
439
- - features/step_definitions/api_steps.rb
440
- - features/step_definitions/policy_steps.rb
441
- - features/step_definitions/result_steps.rb
442
- - features/support/env.rb
443
- - features/support/hooks.rb
444
- - features/support/world.rb
445
- - features/update_password.feature
446
- - features/user.feature
447
- - features/variable_fields.feature
448
- - features/variable_value.feature
449
- - spec/api/host_factories_spec.rb
450
- - spec/api_spec.rb
451
- - spec/base_object_spec.rb
452
- - spec/cert_utils_spec.rb
453
- - spec/cidr_spec.rb
454
- - spec/configuration_spec.rb
455
- - spec/has_attributes_spec.rb
456
- - spec/helpers/errors_matcher.rb
457
- - spec/helpers/request_helpers.rb
458
- - spec/id_spec.rb
459
- - spec/ldap_sync_spec.rb
460
- - spec/log_source_spec.rb
461
- - spec/log_spec.rb
462
- - spec/roles_spec.rb
463
- - spec/spec_helper.rb
464
- - spec/ssl_spec.rb
465
- - spec/uri_escape_spec.rb
274
+ test_files: []
data/.codeclimate.yml DELETED
@@ -1,10 +0,0 @@
1
- plugins:
2
- rubocop:
3
- enabled: true
4
- channel: rubocop-0-76
5
- reek:
6
- enabled: true
7
- brakeman:
8
- enabled: false
9
- shellcheck:
10
- enabled: true
data/.dockerignore DELETED
@@ -1 +0,0 @@
1
- Gemfile.lock
data/.github/CODEOWNERS DELETED
@@ -1,10 +0,0 @@
1
- * @cyberark/community-and-integrations-team @conjurinc/community-and-integrations-team @conjurdemos/community-and-integrations-team
2
-
3
- # Changes to .trivyignore require Security Architect approval
4
- .trivyignore @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects
5
-
6
- # Changes to .codeclimate.yml require Quality Architect approval
7
- .codeclimate.yml @cyberark/quality-architects @conjurinc/quality-architects @conjurdemos/quality-architects
8
-
9
- # Changes to SECURITY.md require Security Architect approval
10
- SECURITY.md @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects
data/.gitignore DELETED
@@ -1,32 +0,0 @@
1
- features/reports
2
- features_v4/reports
3
- dev/data_key
4
- .DS_Store
5
- build_number
6
- *.gem
7
- *.rbc
8
- .bundle
9
- .config
10
- .yardoc
11
- Gemfile.lock
12
- InstalledFiles
13
- _yardoc
14
- coverage
15
- coverage_v4
16
- doc/
17
- lib/bundler/man
18
- pkg
19
- rdoc
20
- spec/reports
21
- test/tmp
22
- test/version_tmp
23
- tmp
24
- .kateproject.d
25
- .rvmrc
26
- .idea
27
-
28
- # rspec
29
- .rspec
30
-
31
- # Script to connect to jon's lxc appliances
32
- lxcsh.rb
data/.gitleaks.toml DELETED
@@ -1,219 +0,0 @@
1
- title = "Conjur API Ruby gitleaks config"
2
-
3
- # This is the config file for gitleaks. You can configure gitleaks what to search for and what to whitelist.
4
- # If GITLEAKS_CONFIG environment variable
5
- # is set, gitleaks will load configurations from that path. If option --config-path is set, gitleaks will load
6
- # configurations from that path. Gitleaks does not whitelist anything by default.
7
- # - https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04B-3_Meli_paper.pdf
8
- # - https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json
9
- [[rules]]
10
- description = "AWS Client ID"
11
- regex = '''(A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}'''
12
- tags = ["key", "AWS"]
13
-
14
- [[rules]]
15
- description = "AWS Secret Key"
16
- regex = '''(?i)aws(.{0,20})?(?-i)['\"][0-9a-zA-Z\/+]{40}['\"]'''
17
- tags = ["key", "AWS"]
18
-
19
- [[rules]]
20
- description = "AWS MWS key"
21
- regex = '''amzn\.mws\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}'''
22
- tags = ["key", "AWS", "MWS"]
23
-
24
- [[rules]]
25
- description = "PKCS8"
26
- regex = '''-----BEGIN PRIVATE KEY-----'''
27
- tags = ["key", "PKCS8"]
28
-
29
- [[rules]]
30
- description = "RSA"
31
- regex = '''-----BEGIN RSA PRIVATE KEY-----'''
32
- tags = ["key", "RSA"]
33
-
34
- [[rules]]
35
- description = "SSH"
36
- regex = '''-----BEGIN OPENSSH PRIVATE KEY-----'''
37
- tags = ["key", "SSH"]
38
-
39
- [[rules]]
40
- description = "PGP"
41
- regex = '''-----BEGIN PGP PRIVATE KEY BLOCK-----'''
42
- tags = ["key", "PGP"]
43
-
44
- [[rules]]
45
- description = "Facebook Secret Key"
46
- regex = '''(?i)(facebook|fb)(.{0,20})?(?-i)['\"][0-9a-f]{32}['\"]'''
47
- tags = ["key", "Facebook"]
48
-
49
- [[rules]]
50
- description = "Facebook Client ID"
51
- regex = '''(?i)(facebook|fb)(.{0,20})?['\"][0-9]{13,17}['\"]'''
52
- tags = ["key", "Facebook"]
53
-
54
- [[rules]]
55
- description = "Facebook access token"
56
- regex = '''EAACEdEose0cBA[0-9A-Za-z]+'''
57
- tags = ["key", "Facebook"]
58
-
59
- [[rules]]
60
- description = "Twitter Secret Key"
61
- regex = '''(?i)twitter(.{0,20})?['\"][0-9a-z]{35,44}['\"]'''
62
- tags = ["key", "Twitter"]
63
-
64
- [[rules]]
65
- description = "Twitter Client ID"
66
- regex = '''(?i)twitter(.{0,20})?['\"][0-9a-z]{18,25}['\"]'''
67
- tags = ["client", "Twitter"]
68
-
69
- [[rules]]
70
- description = "Github"
71
- regex = '''(?i)github(.{0,20})?(?-i)['\"][0-9a-zA-Z]{35,40}['\"]'''
72
- tags = ["key", "Github"]
73
-
74
- [[rules]]
75
- description = "LinkedIn Client ID"
76
- regex = '''(?i)linkedin(.{0,20})?(?-i)['\"][0-9a-z]{12}['\"]'''
77
- tags = ["client", "Twitter"]
78
-
79
- [[rules]]
80
- description = "LinkedIn Secret Key"
81
- regex = '''(?i)linkedin(.{0,20})?['\"][0-9a-z]{16}['\"]'''
82
- tags = ["secret", "Twitter"]
83
-
84
- [[rules]]
85
- description = "Slack"
86
- regex = '''xox[baprs]-([0-9a-zA-Z]{10,48})?'''
87
- tags = ["key", "Slack"]
88
-
89
- [[rules]]
90
- description = "EC"
91
- regex = '''-----BEGIN EC PRIVATE KEY-----'''
92
- tags = ["key", "EC"]
93
-
94
- [[rules]]
95
- description = "Generic API key"
96
- regex = '''(?i)(api_key|apikey)(.{0,20})?['|"][0-9a-zA-Z]{32,45}['|"]'''
97
- tags = ["key", "API", "generic"]
98
-
99
- [[rules]]
100
- description = "Generic Secret"
101
- regex = '''(?i)secret(.{0,20})?['|"][0-9a-zA-Z]{32,45}['|"]'''
102
- tags = ["key", "Secret", "generic"]
103
-
104
- [[rules]]
105
- description = "Google API key"
106
- regex = '''AIza[0-9A-Za-z\\-_]{35}'''
107
- tags = ["key", "Google"]
108
-
109
- [[rules]]
110
- description = "Google Cloud Platform API key"
111
- regex = '''(?i)(google|gcp|youtube|drive|yt)(.{0,20})?['\"][AIza[0-9a-z\\-_]{35}]['\"]'''
112
- tags = ["key", "Google", "GCP"]
113
-
114
- [[rules]]
115
- description = "Google OAuth"
116
- regex = '''(?i)(google|gcp|auth)(.{0,20})?['"][0-9]+-[0-9a-z_]{32}\.apps\.googleusercontent\.com['"]'''
117
- tags = ["key", "Google", "OAuth"]
118
-
119
- [[rules]]
120
- description = "Google OAuth access token"
121
- regex = '''ya29\.[0-9A-Za-z\-_]+'''
122
- tags = ["key", "Google", "OAuth"]
123
-
124
- [[rules]]
125
- description = "Heroku API key"
126
- regex = '''(?i)heroku(.{0,20})?['"][0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}['"]'''
127
- tags = ["key", "Heroku"]
128
-
129
- [[rules]]
130
- description = "MailChimp API key"
131
- regex = '''(?i)(mailchimp|mc)(.{0,20})?['"][0-9a-f]{32}-us[0-9]{1,2}['"]'''
132
- tags = ["key", "Mailchimp"]
133
-
134
- [[rules]]
135
- description = "Mailgun API key"
136
- regex = '''(?i)(mailgun|mg)(.{0,20})?['"][0-9a-z]{32}['"]'''
137
- tags = ["key", "Mailgun"]
138
-
139
- [[rules]]
140
- description = "Password in URL"
141
- regex = '''[a-zA-Z]{3,10}:\/\/[^\/\s:@]{3,20}:[^\/\s:@]{3,20}@.{1,100}\/?.?'''
142
- tags = ["key", "URL", "generic"]
143
-
144
- [[rules]]
145
- description = "PayPal Braintree access token"
146
- regex = '''access_token\$production\$[0-9a-z]{16}\$[0-9a-f]{32}'''
147
- tags = ["key", "Paypal"]
148
-
149
- [[rules]]
150
- description = "Picatic API key"
151
- regex = '''sk_live_[0-9a-z]{32}'''
152
- tags = ["key", "Picatic"]
153
-
154
- [[rules]]
155
- description = "Slack Webhook"
156
- regex = '''https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}'''
157
- tags = ["key", "slack"]
158
-
159
- [[rules]]
160
- description = "Stripe API key"
161
- regex = '''(?i)stripe(.{0,20})?['\"][sk|rk]_live_[0-9a-zA-Z]{24}'''
162
- tags = ["key", "Stripe"]
163
-
164
- [[rules]]
165
- description = "Square access token"
166
- regex = '''sq0atp-[0-9A-Za-z\-_]{22}'''
167
- tags = ["key", "square"]
168
-
169
- [[rules]]
170
- description = "Square OAuth secret"
171
- regex = '''sq0csp-[0-9A-Za-z\\-_]{43}'''
172
- tags = ["key", "square"]
173
-
174
- [[rules]]
175
- description = "Twilio API key"
176
- regex = '''(?i)twilio(.{0,20})?['\"][0-9a-f]{32}['\"]'''
177
- tags = ["key", "twilio"]
178
-
179
- [whitelist]
180
- files = [
181
- # "(.*?)(jpg|gif|doc|pdf|bin)$",
182
- ".gitleaks.toml",
183
- "spec/ssl_spec.rb" # unit test file that has sample RSA key
184
- ]
185
- regexes = [
186
- "mysql://username:password@mysql.somehost.com/mydb", # sample mysql connection string from code comment
187
- "http://master:master@localhost", # sample URI in unit test data
188
- "http://admin:%5E6feWZpr@localhost" # sample URI in unit test data
189
- ]
190
-
191
- # Additional Examples
192
-
193
- # [[rules]]
194
- # description = "Generic Key"
195
- # regex = '''(?i)key(.{0,6})?(:|=|=>|:=)'''
196
- # entropies = [
197
- # "4.1-4.3",
198
- # "5.5-6.3",
199
- # ]
200
- # entropyROI = "line"
201
- # filetypes = [".go", ".py", ".c"]
202
- # tags = ["key"]
203
- # severity = "8"
204
- #
205
- #
206
- # [[rules]]
207
- # description = "Generic Key"
208
- # regex = '''(?i)key(.{0,6})?(:|=|=>|:=)'''
209
- # entropies = ["4.1-4.3"]
210
- # filetypes = [".gee"]
211
- # entropyROI = "line"
212
- # tags = ["key"]
213
- # severity = "medium"
214
-
215
- # [[rules]]
216
- # description = "Any pem file"
217
- # filetypes = [".key"]
218
- # tags = ["pem"]
219
- # severity = "high"
data/.overcommit.yml DELETED
@@ -1,16 +0,0 @@
1
- PreCommit:
2
- ALL:
3
- problem_on_unmodified_line: warn
4
-
5
- RuboCop:
6
- enabled: true
7
- flags: [
8
- '--format=emacs', '--force-exclusion', '--display-cop-names',
9
- '-c', '.rubocop_settings.yml']
10
-
11
- Reek:
12
- enabled: true
13
- flags: [
14
- '--single-line', '--no-color',
15
- '-c', '/dev/null']
16
-
data/.project DELETED
@@ -1,18 +0,0 @@
1
- <?xml version="1.0" encoding="UTF-8"?>
2
- <projectDescription>
3
- <name>conjur-api</name>
4
- <comment></comment>
5
- <projects>
6
- </projects>
7
- <buildSpec>
8
- <buildCommand>
9
- <name>com.aptana.ide.core.unifiedBuilder</name>
10
- <arguments>
11
- </arguments>
12
- </buildCommand>
13
- </buildSpec>
14
- <natures>
15
- <nature>com.aptana.ruby.core.rubynature</nature>
16
- <nature>com.aptana.projects.webnature</nature>
17
- </natures>
18
- </projectDescription>
data/.rubocop.yml DELETED
@@ -1,3 +0,0 @@
1
- inherit_from:
2
- - .rubocop_settings.yml
3
- - .rubocop_todo.yml
@@ -1,86 +0,0 @@
1
- AllCops:
2
- TargetRubyVersion: 2.7
3
-
4
- # These non-default settings best reflect our current code style.
5
- Style/MethodDefParentheses:
6
- EnforcedStyle: require_no_parentheses_except_multiline
7
- Style/PercentLiteralDelimiters:
8
- PreferredDelimiters:
9
- "%i": ()
10
- "%w": ()
11
- Style/RescueStandardError:
12
- EnforcedStyle: implicit
13
- Style/AndOr:
14
- EnforcedStyle: conditionals
15
- Layout/IndentHeredoc:
16
- EnforcedStyle: squiggly
17
- Layout/MultilineMethodCallBraceLayout:
18
- EnforcedStyle: symmetrical
19
- Layout/SpaceAroundBlockParameters:
20
- EnforcedStyleInsidePipes: no_space
21
- Layout/SpaceAroundEqualsInParameterDefault:
22
- EnforcedStyle: space
23
- Layout/SpaceBeforeBlockBraces:
24
- EnforcedStyle: space
25
- EnforcedStyleForEmptyBraces: space
26
- Layout/SpaceInsideBlockBraces:
27
- EnforcedStyle: space
28
- EnforcedStyleForEmptyBraces: no_space
29
- SpaceBeforeBlockParameters: true
30
- Layout/SpaceInsideHashLiteralBraces:
31
- EnforcedStyle: space
32
- EnforcedStyleForEmptyBraces: no_space
33
- Layout/SpaceInsideParens:
34
- EnforcedStyle: no_space
35
- Layout/SpaceInsideReferenceBrackets:
36
- EnforcedStyle: no_space
37
- EnforcedStyleForEmptyBrackets: no_space
38
- Layout/TrailingBlankLines:
39
- EnforcedStyle: final_newline
40
- Style/BarePercentLiterals:
41
- EnforcedStyle: percent_q
42
-
43
- # Either style of these arguably has its place depending on the context.
44
- Style/FormatStringToken:
45
- Enabled: false
46
- Style/LambdaCall:
47
- Enabled: false
48
- Style/StringLiterals:
49
- Enabled: false
50
- Layout/SpaceInsideArrayLiteralBrackets:
51
- Enabled: false
52
- # However, these score at comparatively fewer offences, so I'll
53
- # leave it here in case we want to enforce a style after all.
54
- EnforcedStyle: no_space
55
- EnforcedStyleForEmptyBrackets: no_space
56
-
57
- # The default configuration of these makes it hard to use proportional fonts.
58
- Layout/MultilineMethodCallIndentation:
59
- EnforcedStyle: indented
60
- Layout/AlignParameters:
61
- EnforcedStyle: with_fixed_indentation
62
- Layout/EndAlignment:
63
- EnforcedStyleAlignWith: start_of_line
64
- Layout/ExtraSpacing:
65
- AllowForAlignment: false
66
- Layout/IndentFirstArgument:
67
- EnforcedStyle: consistent
68
- Layout/IndentFirstHashElement:
69
- EnforcedStyle: consistent
70
- Layout/MultilineMethodCallIndentation:
71
- EnforcedStyle: indented
72
- Layout/MultilineOperationIndentation:
73
- EnforcedStyle: indented
74
- Layout/SpaceAroundOperators:
75
- AllowForAlignment: false
76
- Layout/SpaceBeforeFirstArg:
77
- AllowForAlignment: false
78
-
79
- Metrics/BlockLength:
80
- CountComments: false
81
- Max: 25
82
- Exclude:
83
- - 'Rakefile'
84
- - '**/*.rake'
85
- - 'spec/**/*.rb'
86
- - 'conjur-api.gemspec'