npm - @sanity-labs/secret-scan - Versions diffs - 0.1.0 - Mend

@sanity-labs/secret-scan 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1,3142 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true}); function _nullishCoalesce(lhs, rhsFn) { if (lhs != null) { return lhs; } else { return rhsFn(); } }// src/rules.ts
+var globalAllowlist = {
+  regexes: [
+    { regex: new RegExp("^true|false|null$", "i") },
+    { regex: new RegExp("^(?:a+|b+|c+|d+|e+|f+|g+|h+|i+|j+|k+|l+|m+|n+|o+|p+|q+|r+|s+|t+|u+|v+|w+|x+|y+|z+|\\*+|\\.+)$", "i") },
+    { regex: new RegExp("^\\$(?:\\d+|{\\d+})$", "") },
+    { regex: new RegExp("^\\$(?:[A-Z_]+|[a-z_]+)$", "") },
+    { regex: new RegExp("^\\${(?:[A-Z_]+|[a-z_]+)}$", "") },
+    { regex: new RegExp("^\\{\\{[ \\t]*[\\w ().|]+[ \\t]*}}$", "") },
+    { regex: new RegExp(`^\\$\\{\\{[ \\t]*(?:(?:env|github|secrets|vars)(?:\\.[A-Za-z]\\w+)+[\\w "'&./=|]*)[ \\t]*}}$`, "") },
+    { regex: new RegExp("^%(?:[A-Z_]+|[a-z_]+)%$", "") },
+    { regex: new RegExp("^%[+\\-# 0]?[bcdeEfFgGoOpqstTUvxX]$", "") },
+    { regex: new RegExp("^\\{\\d{0,2}}$", "") },
+    { regex: new RegExp("^@(?:[A-Z_]+|[a-z_]+)@$", "") },
+    { regex: new RegExp("^/Users/[a-z0-9]+/[\\w .-/]+$", "i") },
+    { regex: new RegExp("^/(?:bin|etc|home|opt|tmp|usr|var)/[\\w ./-]+$", "") }
+  ],
+  stopwords: [
+    "014df517-39d1-4453-b7b3-9930c563627c",
+    "abcdefghijklmnopqrstuvwxyz"
+  ]
+};
+var rules = [
+  {
+    id: "1password-secret-key",
+    label: "1password Secret Key",
+    regex: new RegExp("\\bA3-[A-Z0-9]{6}-(?:(?:[A-Z0-9]{11})|(?:[A-Z0-9]{6}-[A-Z0-9]{5}))-[A-Z0-9]{5}-[A-Z0-9]{5}-[A-Z0-9]{5}\\b", ""),
+    keywords: ["a3-"],
+    entropy: 3.8
+  },
+  {
+    id: "1password-service-account-token",
+    label: "1password Service Account Token",
+    regex: new RegExp("ops_eyJ[a-zA-Z0-9+/]{250,}={0,3}", ""),
+    keywords: ["ops_"],
+    entropy: 4
+  },
+  {
+    id: "adafruit-api-key",
+    label: "Adafruit API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:adafruit)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9_-]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["adafruit"]
+  },
+  {
+    id: "adobe-client-id",
+    label: "Adobe Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:adobe)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["adobe"],
+    entropy: 2
+  },
+  {
+    id: "adobe-client-secret",
+    label: "Adobe Client Secret",
+    regex: new RegExp(`\\b(p8e-[a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["p8e-"],
+    entropy: 2
+  },
+  {
+    id: "age-secret-key",
+    label: "Age Secret Key",
+    regex: new RegExp("AGE-SECRET-KEY-1[QPZRY9X8GF2TVDW0S3JN54KHCE6MUA7L]{58}", ""),
+    keywords: ["age-secret-key-1"]
+  },
+  {
+    id: "airtable-api-key",
+    label: "Airtable API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:airtable)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{17})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["airtable"]
+  },
+  {
+    id: "airtable-personnal-access-token",
+    label: "Airtable Personnal Access Token",
+    regex: new RegExp("\\b(pat[[:alnum:]]{14}\\.[a-f0-9]{64})\\b", ""),
+    keywords: ["airtable"]
+  },
+  {
+    id: "algolia-api-key",
+    label: "Algolia API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:algolia)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["algolia"]
+  },
+  {
+    id: "alibaba-access-key-id",
+    label: "Alibaba Access Key ID",
+    regex: new RegExp(`\\b(LTAI[a-z0-9]{20})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["ltai"],
+    entropy: 2
+  },
+  {
+    id: "alibaba-secret-key",
+    label: "Alibaba Secret Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:alibaba)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{30})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["alibaba"],
+    entropy: 2
+  },
+  {
+    id: "anthropic-admin-api-key",
+    label: "Anthropic Admin API Key",
+    regex: new RegExp(`\\b(sk-ant-admin01-[a-zA-Z0-9_\\-]{93}AA)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sk-ant-admin01"]
+  },
+  {
+    id: "anthropic-api-key",
+    label: "Anthropic API Key",
+    regex: new RegExp(`\\b(sk-ant-api03-[a-zA-Z0-9_\\-]{93}AA)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sk-ant-api03"]
+  },
+  {
+    id: "artifactory-api-key",
+    label: "Artifactory API Key",
+    regex: new RegExp("\\bAKCp[A-Za-z0-9]{69}\\b", ""),
+    keywords: ["akcp"],
+    entropy: 4.5
+  },
+  {
+    id: "artifactory-reference-token",
+    label: "Artifactory Reference Token",
+    regex: new RegExp("\\bcmVmd[A-Za-z0-9]{59}\\b", ""),
+    keywords: ["cmvmd"],
+    entropy: 4.5
+  },
+  {
+    id: "asana-client-id",
+    label: "Asana Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:asana)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["asana"]
+  },
+  {
+    id: "asana-client-secret",
+    label: "Asana Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:asana)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["asana"]
+  },
+  {
+    id: "atlassian-api-token",
+    label: "Atlassian API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:(?:ATLASSIAN|[Aa]tlassian)|(?:CONFLUENCE|[Cc]onfluence)|(?:JIRA|[Jj]ira))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{20}[a-f0-9]{4})(?:[\\x60'"\\s;]|\\\\[nr]|$)|\\b(ATATT3[A-Za-z0-9_\\-=]{186})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["atlassian", "confluence", "jira", "atatt3"],
+    entropy: 3.5
+  },
+  {
+    id: "authress-service-client-access-key",
+    label: "Authress Service Client Access Key",
+    regex: new RegExp(`\\b((?:sc|ext|scauth|authress)_[a-z0-9]{5,30}\\.[a-z0-9]{4,6}\\.(?:acc)[_-][a-z0-9-]{10,32}\\.[a-z0-9+/_=-]{30,120})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sc_", "ext_", "scauth_", "authress_"],
+    entropy: 2
+  },
+  {
+    id: "aws-access-token",
+    label: "AWS Access Token",
+    regex: new RegExp("\\b((?:A3T[A-Z0-9]|AKIA|ASIA|ABIA|ACCA)[A-Z2-7]{16})\\b", ""),
+    keywords: ["a3t", "akia", "asia", "abia", "acca"],
+    entropy: 3,
+    allowlist: {
+      regexes: [
+        { regex: new RegExp(".+EXAMPLE$", "") }
+      ]
+    }
+  },
+  {
+    id: "aws-amazon-bedrock-api-key-long-lived",
+    label: "AWS Amazon Bedrock API Key Long Lived",
+    regex: new RegExp(`\\b(ABSK[A-Za-z0-9+/]{109,269}={0,2})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["absk"],
+    entropy: 3
+  },
+  {
+    id: "aws-amazon-bedrock-api-key-short-lived",
+    label: "AWS Amazon Bedrock API Key Short Lived",
+    regex: new RegExp("bedrock-api-key-YmVkcm9jay5hbWF6b25hd3MuY29t", ""),
+    keywords: ["bedrock-api-key-"],
+    entropy: 3
+  },
+  {
+    id: "azure-ad-client-secret",
+    label: "Azure Ad Client Secret",
+    regex: new RegExp(`(?:^|[\\\\'"\\x60\\s>=:(,)])([a-zA-Z0-9_~.]{3}\\dQ~[a-zA-Z0-9_~.-]{31,34})(?:$|[\\\\'"\\x60\\s<),])`, ""),
+    keywords: ["q~"],
+    entropy: 3
+  },
+  {
+    id: "beamer-api-token",
+    label: "Beamer API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:beamer)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(b_[a-z0-9=_\\-]{44})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["beamer"]
+  },
+  {
+    id: "bitbucket-client-id",
+    label: "Bitbucket Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:bitbucket)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["bitbucket"]
+  },
+  {
+    id: "bitbucket-client-secret",
+    label: "Bitbucket Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:bitbucket)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["bitbucket"]
+  },
+  {
+    id: "bittrex-access-key",
+    label: "Bittrex Access Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:bittrex)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["bittrex"]
+  },
+  {
+    id: "bittrex-secret-key",
+    label: "Bittrex Secret Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:bittrex)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["bittrex"]
+  },
+  {
+    id: "cisco-meraki-api-key",
+    label: "Cisco Meraki API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:[\\w.-]{0,50}?(?:(?:[Mm]eraki|MERAKI))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3})(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["meraki"],
+    entropy: 3
+  },
+  {
+    id: "clickhouse-cloud-api-secret-key",
+    label: "Clickhouse Cloud API Secret Key",
+    regex: new RegExp("\\b(4b1d[A-Za-z0-9]{38})\\b", ""),
+    keywords: ["4b1d"],
+    entropy: 3
+  },
+  {
+    id: "clojars-api-token",
+    label: "Clojars API Token",
+    regex: new RegExp("CLOJARS_[a-z0-9]{60}", "i"),
+    keywords: ["clojars_"],
+    entropy: 2
+  },
+  {
+    id: "cloudflare-api-key",
+    label: "Cloudflare API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:cloudflare)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9_-]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["cloudflare"],
+    entropy: 2
+  },
+  {
+    id: "cloudflare-global-api-key",
+    label: "Cloudflare Global API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:cloudflare)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{37})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["cloudflare"],
+    entropy: 2
+  },
+  {
+    id: "cloudflare-origin-ca-key",
+    label: "Cloudflare Origin Ca Key",
+    regex: new RegExp(`\\b(v1\\.0-[a-f0-9]{24}-[a-f0-9]{146})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["cloudflare", "v1.0-"],
+    entropy: 2
+  },
+  {
+    id: "codecov-access-token",
+    label: "Codecov Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:codecov)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["codecov"]
+  },
+  {
+    id: "cohere-api-token",
+    label: "Cohere API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:[\\w.-]{0,50}?(?:cohere|CO_API_KEY)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3})(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-zA-Z0-9]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["cohere", "co_api_key"],
+    entropy: 4
+  },
+  {
+    id: "coinbase-access-token",
+    label: "Coinbase Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:coinbase)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9_-]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["coinbase"]
+  },
+  {
+    id: "confluent-access-token",
+    label: "Confluent Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:confluent)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["confluent"]
+  },
+  {
+    id: "confluent-secret-key",
+    label: "Confluent Secret Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:confluent)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["confluent"]
+  },
+  {
+    id: "contentful-delivery-api-token",
+    label: "Contentful Delivery API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:contentful)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{43})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["contentful"]
+  },
+  {
+    id: "curl-auth-header",
+    label: "Curl Auth Header",
+    regex: new RegExp(`\\bcurl\\b(?:.*?|.*?(?:[\\r\\n]{1,2}.*?){1,5})[ \\t\\n\\r](?:-H|--header)(?:=|[ \\t]{0,5})(?:"(?:Authorization:[ \\t]{0,5}(?:Basic[ \\t]([a-z0-9+/]{8,}={0,3})|(?:Bearer|(?:Api-)?Token)[ \\t]([\\w=~@.+/-]{8,})|([\\w=~@.+/-]{8,}))|(?:(?:X-(?:[a-z]+-)?)?(?:Api-?)?(?:Key|Token)):[ \\t]{0,5}([\\w=~@.+/-]{8,}))"|'(?:Authorization:[ \\t]{0,5}(?:Basic[ \\t]([a-z0-9+/]{8,}={0,3})|(?:Bearer|(?:Api-)?Token)[ \\t]([\\w=~@.+/-]{8,})|([\\w=~@.+/-]{8,}))|(?:(?:X-(?:[a-z]+-)?)?(?:Api-?)?(?:Key|Token)):[ \\t]{0,5}([\\w=~@.+/-]{8,}))')(?:\\B|\\s|$)`, "i"),
+    keywords: ["curl"],
+    entropy: 2.75
+  },
+  {
+    id: "curl-auth-user",
+    label: "Curl Auth User",
+    regex: new RegExp(`\\bcurl\\b(?:.*|.*(?:[\\r\\n]{1,2}.*){1,5})[ \\t\\n\\r](?:-u|--user)(?:=|[ \\t]{0,5})("(:[^"]{3,}|[^:"]{3,}:|[^:"]{3,}:[^"]{3,})"|'([^:']{3,}:[^']{3,})'|((?:"[^"]{3,}"|'[^']{3,}'|[\\w$@.-]+):(?:"[^"]{3,}"|'[^']{3,}'|[\\w\${}@.-]+)))(?:\\s|$)`, ""),
+    keywords: ["curl"],
+    entropy: 2,
+    allowlist: {
+      regexes: [
+        { regex: new RegExp("[^:]+:(?:change(?:it|me)|pass(?:word)?|pwd|test|token|\\*+|x+)", "") },
+        { regex: new RegExp(`['"]?<[^>]+>['"]?:['"]?<[^>]+>|<[^:]+:[^>]+>['"]?`, "") },
+        { regex: new RegExp("[^:]+:\\[[^]]+]", "") },
+        { regex: new RegExp(`['"]?[^:]+['"]?:['"]?\\$(?:\\d|\\w+|\\{(?:\\d|\\w+)})['"]?`, "") },
+        { regex: new RegExp("\\$\\([^)]+\\):\\$\\([^)]+\\)", "") },
+        { regex: new RegExp(`['"]?\\$?{{[^}]+}}['"]?:['"]?\\$?{{[^}]+}}['"]?`, "") }
+      ]
+    }
+  },
+  {
+    id: "databricks-api-token",
+    label: "Databricks API Token",
+    regex: new RegExp(`\\b(dapi[a-f0-9]{32}(?:-\\d)?)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["dapi"],
+    entropy: 3
+  },
+  {
+    id: "datadog-access-token",
+    label: "Datadog Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:datadog)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["datadog"]
+  },
+  {
+    id: "defined-networking-api-token",
+    label: "Defined Networking API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:dnkey)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(dnkey-[a-z0-9=_\\-]{26}-[a-z0-9=_\\-]{52})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["dnkey"]
+  },
+  {
+    id: "digitalocean-access-token",
+    label: "Digitalocean Access Token",
+    regex: new RegExp(`\\b(doo_v1_[a-f0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["doo_v1_"],
+    entropy: 3
+  },
+  {
+    id: "digitalocean-pat",
+    label: "Digitalocean PAT",
+    regex: new RegExp(`\\b(dop_v1_[a-f0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["dop_v1_"],
+    entropy: 3
+  },
+  {
+    id: "digitalocean-refresh-token",
+    label: "Digitalocean Refresh Token",
+    regex: new RegExp(`\\b(dor_v1_[a-f0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["dor_v1_"]
+  },
+  {
+    id: "discord-api-token",
+    label: "Discord API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:discord)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["discord"]
+  },
+  {
+    id: "discord-client-id",
+    label: "Discord Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:discord)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9]{18})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["discord"],
+    entropy: 2
+  },
+  {
+    id: "discord-client-secret",
+    label: "Discord Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:discord)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["discord"],
+    entropy: 2
+  },
+  {
+    id: "doppler-api-token",
+    label: "Doppler API Token",
+    regex: new RegExp("dp\\.pt\\.[a-z0-9]{43}", "i"),
+    keywords: ["dp.pt."],
+    entropy: 2
+  },
+  {
+    id: "droneci-access-token",
+    label: "Droneci Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:droneci)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["droneci"]
+  },
+  {
+    id: "dropbox-api-token",
+    label: "Dropbox API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:dropbox)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{15})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["dropbox"]
+  },
+  {
+    id: "dropbox-long-lived-api-token",
+    label: "Dropbox Long Lived API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:dropbox)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{11}(AAAAAAAAAA)[a-z0-9\\-_=]{43})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["dropbox"]
+  },
+  {
+    id: "dropbox-short-lived-api-token",
+    label: "Dropbox Short Lived API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:dropbox)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(sl\\.[a-z0-9\\-=_]{135})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["dropbox"]
+  },
+  {
+    id: "duffel-api-token",
+    label: "Duffel API Token",
+    regex: new RegExp("duffel_(?:test|live)_[a-z0-9_\\-=]{43}", "i"),
+    keywords: ["duffel_"],
+    entropy: 2
+  },
+  {
+    id: "dynatrace-api-token",
+    label: "Dynatrace API Token",
+    regex: new RegExp("dt0c01\\.[a-z0-9]{24}\\.[a-z0-9]{64}", "i"),
+    keywords: ["dt0c01."],
+    entropy: 4
+  },
+  {
+    id: "easypost-api-token",
+    label: "Easypost API Token",
+    regex: new RegExp("\\bEZAK[a-z0-9]{54}\\b", "i"),
+    keywords: ["ezak"],
+    entropy: 2
+  },
+  {
+    id: "easypost-test-api-token",
+    label: "Easypost Test API Token",
+    regex: new RegExp("\\bEZTK[a-z0-9]{54}\\b", "i"),
+    keywords: ["eztk"],
+    entropy: 2
+  },
+  {
+    id: "etsy-access-token",
+    label: "Etsy Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:(?:ETSY|[Ee]tsy))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{24})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["etsy"],
+    entropy: 3
+  },
+  {
+    id: "facebook-access-token",
+    label: "Facebook Access Token",
+    regex: new RegExp(`\\b(\\d{15,16}(\\||%)[0-9a-z\\-_]{27,40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["facebook"],
+    entropy: 3
+  },
+  {
+    id: "facebook-page-access-token",
+    label: "Facebook Page Access Token",
+    regex: new RegExp(`\\b(EAA[MC][a-z0-9]{100,})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["eaam", "eaac"],
+    entropy: 4
+  },
+  {
+    id: "facebook-secret",
+    label: "Facebook Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:facebook)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["facebook"],
+    entropy: 3
+  },
+  {
+    id: "fastly-api-token",
+    label: "Fastly API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:fastly)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["fastly"]
+  },
+  {
+    id: "finicity-api-token",
+    label: "Finicity API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:finicity)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["finicity"]
+  },
+  {
+    id: "finicity-client-secret",
+    label: "Finicity Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:finicity)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{20})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["finicity"]
+  },
+  {
+    id: "finnhub-access-token",
+    label: "Finnhub Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:finnhub)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{20})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["finnhub"]
+  },
+  {
+    id: "flickr-access-token",
+    label: "Flickr Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:flickr)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["flickr"]
+  },
+  {
+    id: "flutterwave-encryption-key",
+    label: "Flutterwave Encryption Key",
+    regex: new RegExp("FLWSECK_TEST-[a-h0-9]{12}", "i"),
+    keywords: ["flwseck_test"],
+    entropy: 2
+  },
+  {
+    id: "flutterwave-public-key",
+    label: "Flutterwave Public Key",
+    regex: new RegExp("FLWPUBK_TEST-[a-h0-9]{32}-X", "i"),
+    keywords: ["flwpubk_test"],
+    entropy: 2
+  },
+  {
+    id: "flutterwave-secret-key",
+    label: "Flutterwave Secret Key",
+    regex: new RegExp("FLWSECK_TEST-[a-h0-9]{32}-X", "i"),
+    keywords: ["flwseck_test"],
+    entropy: 2
+  },
+  {
+    id: "flyio-access-token",
+    label: "Flyio Access Token",
+    regex: new RegExp(`\\b((?:fo1_[\\w-]{43}|fm1[ar]_[a-zA-Z0-9+\\/]{100,}={0,3}|fm2_[a-zA-Z0-9+\\/]{100,}={0,3}))(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["fo1_", "fm1", "fm2_"],
+    entropy: 4
+  },
+  {
+    id: "frameio-api-token",
+    label: "Frameio API Token",
+    regex: new RegExp("fio-u-[a-z0-9\\-_=]{64}", "i"),
+    keywords: ["fio-u-"]
+  },
+  {
+    id: "freemius-secret-key",
+    label: "Freemius Secret Key",
+    regex: new RegExp(`["']secret_key["']\\s*=>\\s*["'](sk_[\\S]{29})["']`, "i"),
+    keywords: ["secret_key"]
+  },
+  {
+    id: "freshbooks-access-token",
+    label: "Freshbooks Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:freshbooks)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["freshbooks"]
+  },
+  {
+    id: "gcp-api-key",
+    label: "GCP API Key",
+    regex: new RegExp(`\\b(AIza[\\w-]{35})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["aiza"],
+    entropy: 4,
+    allowlist: {
+      regexes: [
+        { regex: new RegExp("AIzaSyabcdefghijklmnopqrstuvwxyz1234567", "") },
+        { regex: new RegExp("AIzaSyAnLA7NfeLquW1tJFpx_eQCxoX-oo6YyIs", "") },
+        { regex: new RegExp("AIzaSyCkEhVjf3pduRDt6d1yKOMitrUEke8agEM", "") },
+        { regex: new RegExp("AIzaSyDMAScliyLx7F0NPDEJi1QmyCgHIAODrlU", "") },
+        { regex: new RegExp("AIzaSyD3asb-2pEZVqMkmL6M9N6nHZRR_znhrh0", "") },
+        { regex: new RegExp("AIzayDNSXIbFmlXbIE6mCzDLQAqITYefhixbX4A", "") },
+        { regex: new RegExp("AIzaSyAdOS2zB6NCsk1pCdZ4-P6GBdi_UUPwX7c", "") },
+        { regex: new RegExp("AIzaSyASWm6HmTMdYWpgMnjRBjxcQ9CKctWmLd4", "") },
+        { regex: new RegExp("AIzaSyANUvH9H9BsUccjsu2pCmEkOPjjaXeDQgY", "") },
+        { regex: new RegExp("AIzaSyA5_iVawFQ8ABuTZNUdcwERLJv_a_p4wtM", "") },
+        { regex: new RegExp("AIzaSyA4UrcGxgwQFTfaI3no3t7Lt1sjmdnP5sQ", "") },
+        { regex: new RegExp("AIzaSyDSb51JiIcB6OJpwwMicseKRhhrOq1cS7g", "") },
+        { regex: new RegExp("AIzaSyBF2RrAIm4a0mO64EShQfqfd2AFnzAvvuU", "") },
+        { regex: new RegExp("AIzaSyBcE-OOIbhjyR83gm4r2MFCu4MJmprNXsw", "") },
+        { regex: new RegExp("AIzaSyB8qGxt4ec15vitgn44duC5ucxaOi4FmqE", "") },
+        { regex: new RegExp("AIzaSyA8vmApnrHNFE0bApF4hoZ11srVL_n0nvY", "") }
+      ]
+    }
+  },
+  {
+    id: "generic-api-key",
+    label: "Generic API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:access|auth|(?:[Aa]pi|API)|credential|creds|key|passw(?:or)?d|secret|token)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([\\w.=-]{10,150}|[a-z0-9][a-z0-9+/]{11,}={0,3})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["access", "api", "auth", "key", "credential", "creds", "passwd", "password", "secret", "token"],
+    entropy: 3.5,
+    allowlist: {
+      regexes: [
+        { regex: new RegExp("^[a-zA-Z_.-]+$", "") },
+        { regex: new RegExp("(?:access(?:ibility|or)|access[_.-]?id|random[_.-]?access|api[_.-]?(?:id|name|version)|rapid|capital|[a-z0-9-]*?api[a-z0-9-]*?:jar:|author|X-MS-Exchange-Organization-Auth|Authentication-Results|(?:credentials?[_.-]?id|withCredentials)|(?:bucket|foreign|hot|idx|natural|primary|pub(?:lic)?|schema|sequence)[_.-]?key|(?:turkey)|key[_.-]?(?:alias|board|code|frame|id|length|mesh|name|pair|press(?:ed)?|ring|selector|signature|size|stone|storetype|word|up|down|left|right)|key[_.-]?vault[_.-]?(?:id|name)|keyVaultToStoreSecrets|key(?:store|tab)[_.-]?(?:file|path)|issuerkeyhash|(?:[DdMm]onkey|[DM]ONKEY)|keying|(?:secret)[_.-]?(?:length|name|size)|UserSecretsId|(?:csrf)[_.-]?token|(?:io\\.jsonwebtoken[ \\t]?:[ \\t]?[\\w-]+)|(?:api|credentials|token)[_.-]?(?:endpoint|ur[il])|public[_.-]?token|(?:key|token)[_.-]?file|(?:(?:[A-Z_]+=\\n[A-Z_]+=|[a-z_]+=\\n[a-z_]+=)(?:\\n|$))|(?:(?:[A-Z.]+=\\n[A-Z.]+=|[a-z.]+=\\n[a-z.]+=)(?:\\n|$)))", "i") },
+        { regex: new RegExp("--mount=type=secret,", ""), target: "line" },
+        { regex: new RegExp(`import[ \\t]+{[ \\t\\w,]+}[ \\t]+from[ \\t]+['"][^'"]+['"]`, ""), target: "line" },
+        { regex: new RegExp('LICENSE[^=]*=\\s*"[^"]+', ""), target: "line" },
+        { regex: new RegExp('LIC_FILES_CHKSUM[^=]*=\\s*"[^"]+', ""), target: "line" },
+        { regex: new RegExp('SRC[^=]*=\\s*"[a-zA-Z0-9]+', ""), target: "line" }
+      ],
+      stopwords: [
+        "000000",
+        "6fe4476ee5a1832882e326b506d14126",
+        "_ec2_",
+        "aaaaaa",
+        "about",
+        "abstract",
+        "academy",
+        "acces",
+        "account",
+        "act-",
+        "act.",
+        "act_",
+        "action",
+        "active",
+        "actively",
+        "activity",
+        "adapter",
+        "add-",
+        "add-on",
+        "add.",
+        "add_",
+        "addon",
+        "addres",
+        "admin",
+        "adobe",
+        "advanced",
+        "adventure",
+        "agent",
+        "agile",
+        "air-",
+        "air.",
+        "air_",
+        "ajax",
+        "akka",
+        "alert",
+        "alfred",
+        "algorithm",
+        "all-",
+        "all.",
+        "all_",
+        "alloy",
+        "alpha",
+        "amazon",
+        "amqp",
+        "analysi",
+        "analytic",
+        "analyzer",
+        "android",
+        "angular",
+        "angularj",
+        "animate",
+        "animation",
+        "another",
+        "ansible",
+        "answer",
+        "ant-",
+        "ant.",
+        "ant_",
+        "any-",
+        "any.",
+        "any_",
+        "apache",
+        "app-",
+        "app.",
+        "app_",
+        "apple",
+        "arch",
+        "archive",
+        "archived",
+        "arduino",
+        "array",
+        "art-",
+        "art.",
+        "art_",
+        "article",
+        "asp-",
+        "asp.",
+        "asp_",
+        "asset",
+        "async",
+        "atom",
+        "attention",
+        "audio",
+        "audit",
+        "aura",
+        "auth",
+        "author",
+        "authorize",
+        "auto",
+        "automated",
+        "automatic",
+        "awesome",
+        "aws_",
+        "azure",
+        "back",
+        "backbone",
+        "backend",
+        "backup",
+        "bar-",
+        "bar.",
+        "bar_",
+        "base",
+        "based",
+        "bash",
+        "basic",
+        "batch",
+        "been",
+        "beer",
+        "behavior",
+        "being",
+        "benchmark",
+        "best",
+        "beta",
+        "better",
+        "big-",
+        "big.",
+        "big_",
+        "binary",
+        "binding",
+        "bit-",
+        "bit.",
+        "bit_",
+        "bitcoin",
+        "block",
+        "blog",
+        "board",
+        "book",
+        "bookmark",
+        "boost",
+        "boot",
+        "bootstrap",
+        "bosh",
+        "bot-",
+        "bot.",
+        "bot_",
+        "bower",
+        "box-",
+        "box.",
+        "box_",
+        "boxen",
+        "bracket",
+        "branch",
+        "bridge",
+        "browser",
+        "brunch",
+        "buffer",
+        "bug-",
+        "bug.",
+        "bug_",
+        "build",
+        "builder",
+        "building",
+        "buildout",
+        "buildpack",
+        "built",
+        "bundle",
+        "busines",
+        "but-",
+        "but.",
+        "but_",
+        "button",
+        "cache",
+        "caching",
+        "cakephp",
+        "calendar",
+        "call",
+        "camera",
+        "campfire",
+        "can-",
+        "can.",
+        "can_",
+        "canva",
+        "captcha",
+        "capture",
+        "card",
+        "carousel",
+        "case",
+        "cassandra",
+        "cat-",
+        "cat.",
+        "cat_",
+        "category",
+        "center",
+        "cento",
+        "challenge",
+        "change",
+        "changelog",
+        "channel",
+        "chart",
+        "chat",
+        "cheat",
+        "check",
+        "checker",
+        "chef",
+        "ches",
+        "chinese",
+        "chosen",
+        "chrome",
+        "ckeditor",
+        "clas",
+        "classe",
+        "classic",
+        "clean",
+        "cli-",
+        "cli.",
+        "cli_",
+        "client",
+        "clojure",
+        "clone",
+        "closure",
+        "cloud",
+        "club",
+        "cluster",
+        "cms-",
+        "cms_",
+        "coco",
+        "code",
+        "coding",
+        "coffee",
+        "color",
+        "combination",
+        "combo",
+        "command",
+        "commander",
+        "comment",
+        "commit",
+        "common",
+        "community",
+        "compas",
+        "compiler",
+        "complete",
+        "component",
+        "composer",
+        "computer",
+        "computing",
+        "con-",
+        "con.",
+        "con_",
+        "concept",
+        "conf",
+        "config",
+        "connect",
+        "connector",
+        "console",
+        "contact",
+        "container",
+        "contao",
+        "content",
+        "contest",
+        "context",
+        "control",
+        "convert",
+        "converter",
+        "conway'",
+        "cookbook",
+        "cookie",
+        "cool",
+        "copy",
+        "cordova",
+        "core",
+        "couchbase",
+        "couchdb",
+        "countdown",
+        "counter",
+        "course",
+        "craft",
+        "crawler",
+        "create",
+        "creating",
+        "creator",
+        "credential",
+        "crm-",
+        "crm.",
+        "crm_",
+        "cros",
+        "crud",
+        "csv-",
+        "csv.",
+        "csv_",
+        "cube",
+        "cucumber",
+        "cuda",
+        "current",
+        "currently",
+        "custom",
+        "daemon",
+        "dark",
+        "dart",
+        "dash",
+        "dashboard",
+        "data",
+        "database",
+        "date",
+        "day-",
+        "day.",
+        "day_",
+        "dead",
+        "debian",
+        "debug",
+        "debugger",
+        "deck",
+        "define",
+        "del-",
+        "del.",
+        "del_",
+        "delete",
+        "demo",
+        "deploy",
+        "design",
+        "designer",
+        "desktop",
+        "detection",
+        "detector",
+        "dev-",
+        "dev.",
+        "dev_",
+        "develop",
+        "developer",
+        "device",
+        "devise",
+        "diff",
+        "digital",
+        "directive",
+        "directory",
+        "discovery",
+        "display",
+        "django",
+        "dns-",
+        "dns_",
+        "doc-",
+        "doc.",
+        "doc_",
+        "docker",
+        "docpad",
+        "doctrine",
+        "document",
+        "doe-",
+        "doe.",
+        "doe_",
+        "dojo",
+        "dom-",
+        "dom.",
+        "dom_",
+        "domain",
+        "don't",
+        "done",
+        "dot-",
+        "dot.",
+        "dot_",
+        "dotfile",
+        "download",
+        "draft",
+        "drag",
+        "drill",
+        "drive",
+        "driven",
+        "driver",
+        "drop",
+        "dropbox",
+        "drupal",
+        "dsl-",
+        "dsl.",
+        "dsl_",
+        "dynamic",
+        "easy",
+        "ecdsa",
+        "eclipse",
+        "edit",
+        "editing",
+        "edition",
+        "editor",
+        "element",
+        "emac",
+        "email",
+        "embed",
+        "embedded",
+        "ember",
+        "emitter",
+        "emulator",
+        "encoding",
+        "endpoint",
+        "engine",
+        "english",
+        "enhanced",
+        "entity",
+        "entry",
+        "env_",
+        "episode",
+        "erlang",
+        "error",
+        "espresso",
+        "event",
+        "evented",
+        "example",
+        "exchange",
+        "exercise",
+        "experiment",
+        "expire",
+        "exploit",
+        "explorer",
+        "export",
+        "exporter",
+        "expres",
+        "ext-",
+        "ext.",
+        "ext_",
+        "extended",
+        "extension",
+        "external",
+        "extra",
+        "extractor",
+        "fabric",
+        "facebook",
+        "factory",
+        "fake",
+        "fast",
+        "feature",
+        "feed",
+        "fewfwef",
+        "ffmpeg",
+        "field",
+        "file",
+        "filter",
+        "find",
+        "finder",
+        "firefox",
+        "firmware",
+        "first",
+        "fish",
+        "fix-",
+        "fix_",
+        "flash",
+        "flask",
+        "flat",
+        "flex",
+        "flexible",
+        "flickr",
+        "flow",
+        "fluent",
+        "fluentd",
+        "fluid",
+        "folder",
+        "font",
+        "force",
+        "foreman",
+        "fork",
+        "form",
+        "format",
+        "formatter",
+        "forum",
+        "foundry",
+        "framework",
+        "free",
+        "friend",
+        "friendly",
+        "front-end",
+        "frontend",
+        "ftp-",
+        "ftp.",
+        "ftp_",
+        "fuel",
+        "full",
+        "fun-",
+        "fun.",
+        "fun_",
+        "func",
+        "future",
+        "gaia",
+        "gallery",
+        "game",
+        "gateway",
+        "gem-",
+        "gem.",
+        "gem_",
+        "gen-",
+        "gen.",
+        "gen_",
+        "general",
+        "generator",
+        "generic",
+        "genetic",
+        "get-",
+        "get.",
+        "get_",
+        "getenv",
+        "getting",
+        "ghost",
+        "gist",
+        "git-",
+        "git.",
+        "git_",
+        "github",
+        "gitignore",
+        "gitlab",
+        "glas",
+        "gmail",
+        "gnome",
+        "gnu-",
+        "gnu.",
+        "gnu_",
+        "goal",
+        "golang",
+        "gollum",
+        "good",
+        "google",
+        "gpu-",
+        "gpu.",
+        "gpu_",
+        "gradle",
+        "grail",
+        "graph",
+        "graphic",
+        "great",
+        "grid",
+        "groovy",
+        "group",
+        "grunt",
+        "guard",
+        "gui-",
+        "gui.",
+        "gui_",
+        "guide",
+        "guideline",
+        "gulp",
+        "gwt-",
+        "gwt.",
+        "gwt_",
+        "hack",
+        "hackathon",
+        "hacker",
+        "hacking",
+        "hadoop",
+        "haml",
+        "handler",
+        "hardware",
+        "has-",
+        "has_",
+        "hash",
+        "haskell",
+        "have",
+        "haxe",
+        "hello",
+        "help",
+        "helper",
+        "here",
+        "hero",
+        "heroku",
+        "high",
+        "hipchat",
+        "history",
+        "home",
+        "homebrew",
+        "homepage",
+        "hook",
+        "host",
+        "hosting",
+        "hot-",
+        "hot.",
+        "hot_",
+        "house",
+        "how-",
+        "how.",
+        "how_",
+        "html",
+        "http",
+        "hub-",
+        "hub.",
+        "hub_",
+        "hubot",
+        "human",
+        "icon",
+        "ide-",
+        "ide.",
+        "ide_",
+        "idea",
+        "identity",
+        "idiomatic",
+        "image",
+        "impact",
+        "import",
+        "important",
+        "importer",
+        "impres",
+        "index",
+        "infinite",
+        "info",
+        "injection",
+        "inline",
+        "input",
+        "inside",
+        "inspector",
+        "instagram",
+        "install",
+        "installer",
+        "instant",
+        "intellij",
+        "interface",
+        "internet",
+        "interview",
+        "into",
+        "intro",
+        "ionic",
+        "iphone",
+        "ipython",
+        "irc-",
+        "irc_",
+        "iso-",
+        "iso.",
+        "iso_",
+        "issue",
+        "jade",
+        "jasmine",
+        "java",
+        "jbos",
+        "jekyll",
+        "jenkin",
+        "jetbrains",
+        "job-",
+        "job.",
+        "job_",
+        "joomla",
+        "jpa-",
+        "jpa.",
+        "jpa_",
+        "jquery",
+        "json",
+        "just",
+        "kafka",
+        "karma",
+        "kata",
+        "kernel",
+        "keyboard",
+        "kindle",
+        "kit-",
+        "kit.",
+        "kit_",
+        "kitchen",
+        "knife",
+        "koan",
+        "kohana",
+        "lab-",
+        "lab.",
+        "lab_",
+        "lambda",
+        "lamp",
+        "language",
+        "laravel",
+        "last",
+        "latest",
+        "latex",
+        "launcher",
+        "layer",
+        "layout",
+        "lazy",
+        "ldap",
+        "leaflet",
+        "league",
+        "learn",
+        "learning",
+        "led-",
+        "led.",
+        "led_",
+        "leetcode",
+        "les-",
+        "les.",
+        "les_",
+        "level",
+        "leveldb",
+        "lib-",
+        "lib.",
+        "lib_",
+        "librarie",
+        "library",
+        "license",
+        "life",
+        "liferay",
+        "light",
+        "lightbox",
+        "like",
+        "line",
+        "link",
+        "linked",
+        "linkedin",
+        "linux",
+        "lisp",
+        "list",
+        "lite",
+        "little",
+        "load",
+        "loader",
+        "local",
+        "location",
+        "lock",
+        "log-",
+        "log.",
+        "log_",
+        "logger",
+        "logging",
+        "logic",
+        "login",
+        "logstash",
+        "longer",
+        "look",
+        "love",
+        "lua-",
+        "lua.",
+        "lua_",
+        "mac-",
+        "mac.",
+        "mac_",
+        "machine",
+        "made",
+        "magento",
+        "magic",
+        "mail",
+        "make",
+        "maker",
+        "making",
+        "man-",
+        "man.",
+        "man_",
+        "manage",
+        "manager",
+        "manifest",
+        "manual",
+        "map-",
+        "map.",
+        "map_",
+        "mapper",
+        "mapping",
+        "markdown",
+        "markup",
+        "master",
+        "math",
+        "matrix",
+        "maven",
+        "md5",
+        "mean",
+        "media",
+        "mediawiki",
+        "meetup",
+        "memcached",
+        "memory",
+        "menu",
+        "merchant",
+        "message",
+        "messaging",
+        "meta",
+        "metadata",
+        "meteor",
+        "method",
+        "metric",
+        "micro",
+        "middleman",
+        "migration",
+        "minecraft",
+        "miner",
+        "mini",
+        "minimal",
+        "mirror",
+        "mit-",
+        "mit.",
+        "mit_",
+        "mobile",
+        "mocha",
+        "mock",
+        "mod-",
+        "mod.",
+        "mod_",
+        "mode",
+        "model",
+        "modern",
+        "modular",
+        "module",
+        "modx",
+        "money",
+        "mongo",
+        "mongodb",
+        "mongoid",
+        "mongoose",
+        "monitor",
+        "monkey",
+        "more",
+        "motion",
+        "moved",
+        "movie",
+        "mozilla",
+        "mqtt",
+        "mule",
+        "multi",
+        "multiple",
+        "music",
+        "mustache",
+        "mvc-",
+        "mvc.",
+        "mvc_",
+        "mysql",
+        "nagio",
+        "name",
+        "native",
+        "need",
+        "neo-",
+        "neo.",
+        "neo_",
+        "nest",
+        "nested",
+        "net-",
+        "net.",
+        "net_",
+        "nette",
+        "network",
+        "new-",
+        "new.",
+        "new_",
+        "next",
+        "nginx",
+        "ninja",
+        "nlp-",
+        "nlp.",
+        "nlp_",
+        "node",
+        "nodej",
+        "nosql",
+        "not-",
+        "not.",
+        "not_",
+        "note",
+        "notebook",
+        "notepad",
+        "notice",
+        "notifier",
+        "now-",
+        "now.",
+        "now_",
+        "number",
+        "oauth",
+        "object",
+        "objective",
+        "obsolete",
+        "ocaml",
+        "octopres",
+        "official",
+        "old-",
+        "old.",
+        "old_",
+        "onboard",
+        "online",
+        "only",
+        "open",
+        "opencv",
+        "opengl",
+        "openshift",
+        "openwrt",
+        "option",
+        "oracle",
+        "org-",
+        "org.",
+        "org_",
+        "origin",
+        "original",
+        "orm-",
+        "orm.",
+        "orm_",
+        "osx-",
+        "osx_",
+        "our-",
+        "our.",
+        "our_",
+        "out-",
+        "out.",
+        "out_",
+        "output",
+        "over",
+        "overview",
+        "own-",
+        "own.",
+        "own_",
+        "pack",
+        "package",
+        "packet",
+        "page",
+        "panel",
+        "paper",
+        "paperclip",
+        "para",
+        "parallax",
+        "parallel",
+        "parse",
+        "parser",
+        "parsing",
+        "particle",
+        "party",
+        "password",
+        "patch",
+        "path",
+        "pattern",
+        "payment",
+        "paypal",
+        "pdf-",
+        "pdf.",
+        "pdf_",
+        "pebble",
+        "people",
+        "perl",
+        "personal",
+        "phalcon",
+        "phoenix",
+        "phone",
+        "phonegap",
+        "photo",
+        "php-",
+        "php.",
+        "php_",
+        "physic",
+        "picker",
+        "pipeline",
+        "platform",
+        "play",
+        "player",
+        "please",
+        "plu-",
+        "plu.",
+        "plu_",
+        "plug-in",
+        "plugin",
+        "plupload",
+        "png-",
+        "png.",
+        "png_",
+        "poker",
+        "polyfill",
+        "polymer",
+        "pool",
+        "pop-",
+        "pop.",
+        "pop_",
+        "popcorn",
+        "popup",
+        "port",
+        "portable",
+        "portal",
+        "portfolio",
+        "post",
+        "power",
+        "powered",
+        "powerful",
+        "prelude",
+        "pretty",
+        "preview",
+        "principle",
+        "print",
+        "pro-",
+        "pro.",
+        "pro_",
+        "problem",
+        "proc",
+        "product",
+        "profile",
+        "profiler",
+        "program",
+        "progres",
+        "project",
+        "protocol",
+        "prototype",
+        "provider",
+        "proxy",
+        "public",
+        "pull",
+        "puppet",
+        "pure",
+        "purpose",
+        "push",
+        "pusher",
+        "pyramid",
+        "python",
+        "quality",
+        "query",
+        "queue",
+        "quick",
+        "rabbitmq",
+        "rack",
+        "radio",
+        "rail",
+        "railscast",
+        "random",
+        "range",
+        "raspberry",
+        "rdf-",
+        "rdf.",
+        "rdf_",
+        "react",
+        "reactive",
+        "read",
+        "reader",
+        "readme",
+        "ready",
+        "real",
+        "real-time",
+        "reality",
+        "realtime",
+        "recipe",
+        "recorder",
+        "red-",
+        "red.",
+        "red_",
+        "reddit",
+        "redi",
+        "redmine",
+        "reference",
+        "refinery",
+        "refresh",
+        "registry",
+        "related",
+        "release",
+        "remote",
+        "rendering",
+        "repo",
+        "report",
+        "request",
+        "require",
+        "required",
+        "requirej",
+        "research",
+        "resource",
+        "response",
+        "resque",
+        "rest",
+        "restful",
+        "resume",
+        "reveal",
+        "reverse",
+        "review",
+        "riak",
+        "rich",
+        "right",
+        "ring",
+        "robot",
+        "role",
+        "room",
+        "router",
+        "routing",
+        "rpc-",
+        "rpc.",
+        "rpc_",
+        "rpg-",
+        "rpg.",
+        "rpg_",
+        "rspec",
+        "ruby-",
+        "ruby.",
+        "ruby_",
+        "rule",
+        "run-",
+        "run.",
+        "run_",
+        "runner",
+        "running",
+        "runtime",
+        "rust",
+        "rvm-",
+        "rvm.",
+        "rvm_",
+        "salt",
+        "sample",
+        "sandbox",
+        "sas-",
+        "sas.",
+        "sas_",
+        "sbt-",
+        "sbt.",
+        "sbt_",
+        "scala",
+        "scalable",
+        "scanner",
+        "schema",
+        "scheme",
+        "school",
+        "science",
+        "scraper",
+        "scratch",
+        "screen",
+        "script",
+        "scroll",
+        "scs-",
+        "scs.",
+        "scs_",
+        "sdk-",
+        "sdk.",
+        "sdk_",
+        "sdl-",
+        "sdl.",
+        "sdl_",
+        "search",
+        "secure",
+        "security",
+        "see-",
+        "see.",
+        "see_",
+        "seed",
+        "select",
+        "selector",
+        "selenium",
+        "semantic",
+        "sencha",
+        "send",
+        "sentiment",
+        "serie",
+        "server",
+        "service",
+        "session",
+        "set-",
+        "set.",
+        "set_",
+        "setting",
+        "setup",
+        "sha1",
+        "sha2",
+        "sha256",
+        "share",
+        "shared",
+        "sharing",
+        "sheet",
+        "shell",
+        "shield",
+        "shipping",
+        "shop",
+        "shopify",
+        "shortener",
+        "should",
+        "show",
+        "showcase",
+        "side",
+        "silex",
+        "simple",
+        "simulator",
+        "single",
+        "site",
+        "skeleton",
+        "sketch",
+        "skin",
+        "slack",
+        "slide",
+        "slider",
+        "slim",
+        "small",
+        "smart",
+        "smtp",
+        "snake",
+        "snapshot",
+        "snippet",
+        "soap",
+        "social",
+        "socket",
+        "software",
+        "solarized",
+        "solr",
+        "solution",
+        "solver",
+        "some",
+        "soon",
+        "source",
+        "space",
+        "spark",
+        "spatial",
+        "spec",
+        "sphinx",
+        "spine",
+        "spotify",
+        "spree",
+        "spring",
+        "sprite",
+        "sql-",
+        "sql.",
+        "sql_",
+        "sqlite",
+        "ssh-",
+        "ssh.",
+        "ssh_",
+        "stack",
+        "staging",
+        "standard",
+        "stanford",
+        "start",
+        "started",
+        "starter",
+        "startup",
+        "stat",
+        "statamic",
+        "state",
+        "static",
+        "statistic",
+        "statsd",
+        "statu",
+        "steam",
+        "step",
+        "still",
+        "stm-",
+        "stm.",
+        "stm_",
+        "storage",
+        "store",
+        "storm",
+        "story",
+        "strategy",
+        "stream",
+        "streaming",
+        "string",
+        "stripe",
+        "structure",
+        "studio",
+        "study",
+        "stuff",
+        "style",
+        "sublime",
+        "sugar",
+        "suite",
+        "summary",
+        "super",
+        "support",
+        "supported",
+        "svg-",
+        "svg.",
+        "svg_",
+        "svn-",
+        "svn.",
+        "svn_",
+        "swagger",
+        "swift",
+        "switch",
+        "switcher",
+        "symfony",
+        "symphony",
+        "sync",
+        "synopsi",
+        "syntax",
+        "system",
+        "tab-",
+        "tab.",
+        "tab_",
+        "table",
+        "tag-",
+        "tag.",
+        "tag_",
+        "talk",
+        "target",
+        "task",
+        "tcp-",
+        "tcp.",
+        "tcp_",
+        "tdd-",
+        "tdd.",
+        "tdd_",
+        "team",
+        "tech",
+        "template",
+        "term",
+        "terminal",
+        "testing",
+        "tetri",
+        "text",
+        "textmate",
+        "theme",
+        "theory",
+        "three",
+        "thrift",
+        "time",
+        "timeline",
+        "timer",
+        "tiny",
+        "tinymce",
+        "tip-",
+        "tip.",
+        "tip_",
+        "title",
+        "todo",
+        "todomvc",
+        "token",
+        "tool",
+        "toolbox",
+        "toolkit",
+        "top-",
+        "top.",
+        "top_",
+        "tornado",
+        "touch",
+        "tower",
+        "tracker",
+        "tracking",
+        "traffic",
+        "training",
+        "transfer",
+        "translate",
+        "transport",
+        "tree",
+        "trello",
+        "try-",
+        "try.",
+        "try_",
+        "tumblr",
+        "tut-",
+        "tut.",
+        "tut_",
+        "tutorial",
+        "tweet",
+        "twig",
+        "twitter",
+        "type",
+        "typo",
+        "ubuntu",
+        "uiview",
+        "ultimate",
+        "under",
+        "unit",
+        "unity",
+        "universal",
+        "unix",
+        "update",
+        "updated",
+        "upgrade",
+        "upload",
+        "uploader",
+        "uri-",
+        "uri.",
+        "uri_",
+        "url-",
+        "url.",
+        "url_",
+        "usage",
+        "usb-",
+        "usb.",
+        "usb_",
+        "use-",
+        "use.",
+        "use_",
+        "used",
+        "useful",
+        "user",
+        "using",
+        "util",
+        "utilitie",
+        "utility",
+        "vagrant",
+        "validator",
+        "value",
+        "variou",
+        "varnish",
+        "version",
+        "via-",
+        "via.",
+        "via_",
+        "video",
+        "view",
+        "viewer",
+        "vim-",
+        "vim.",
+        "vim_",
+        "vimrc",
+        "virtual",
+        "vision",
+        "visual",
+        "vpn",
+        "want",
+        "warning",
+        "watch",
+        "watcher",
+        "wave",
+        "way-",
+        "way.",
+        "way_",
+        "weather",
+        "web-",
+        "web_",
+        "webapp",
+        "webgl",
+        "webhook",
+        "webkit",
+        "webrtc",
+        "website",
+        "websocket",
+        "welcome",
+        "what",
+        "what'",
+        "when",
+        "where",
+        "which",
+        "why-",
+        "why.",
+        "why_",
+        "widget",
+        "wifi",
+        "wiki",
+        "win-",
+        "win.",
+        "win_",
+        "window",
+        "wip-",
+        "wip.",
+        "wip_",
+        "within",
+        "without",
+        "wizard",
+        "word",
+        "wordpres",
+        "work",
+        "worker",
+        "workflow",
+        "working",
+        "workshop",
+        "world",
+        "wrapper",
+        "write",
+        "writer",
+        "writing",
+        "written",
+        "www-",
+        "www.",
+        "www_",
+        "xamarin",
+        "xcode",
+        "xml-",
+        "xml.",
+        "xml_",
+        "xmpp",
+        "xxxxxx",
+        "yahoo",
+        "yaml",
+        "yandex",
+        "yeoman",
+        "yet-",
+        "yet.",
+        "yet_",
+        "yii-",
+        "yii.",
+        "yii_",
+        "youtube",
+        "yui-",
+        "yui.",
+        "yui_",
+        "zend",
+        "zero",
+        "zip-",
+        "zip.",
+        "zip_",
+        "zsh-",
+        "zsh.",
+        "zsh_"
+      ]
+    }
+  },
+  {
+    id: "github-app-token",
+    label: "Github App Token",
+    regex: new RegExp("(?:ghu|ghs)_[0-9a-zA-Z]{36}", ""),
+    keywords: ["ghu_", "ghs_"],
+    entropy: 3
+  },
+  {
+    id: "github-fine-grained-pat",
+    label: "Github Fine Grained PAT",
+    regex: new RegExp("github_pat_\\w{82}", ""),
+    keywords: ["github_pat_"],
+    entropy: 3
+  },
+  {
+    id: "github-oauth",
+    label: "Github OAUTH",
+    regex: new RegExp("gho_[0-9a-zA-Z]{36}", ""),
+    keywords: ["gho_"],
+    entropy: 3
+  },
+  {
+    id: "github-pat",
+    label: "Github PAT",
+    regex: new RegExp("ghp_[0-9a-zA-Z]{36}", ""),
+    keywords: ["ghp_"],
+    entropy: 3
+  },
+  {
+    id: "github-refresh-token",
+    label: "Github Refresh Token",
+    regex: new RegExp("ghr_[0-9a-zA-Z]{36}", ""),
+    keywords: ["ghr_"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-cicd-job-token",
+    label: "Gitlab Cicd Job Token",
+    regex: new RegExp("glcbt-[0-9a-zA-Z]{1,5}_[0-9a-zA-Z_-]{20}", ""),
+    keywords: ["glcbt-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-deploy-token",
+    label: "Gitlab Deploy Token",
+    regex: new RegExp("gldt-[0-9a-zA-Z_\\-]{20}", ""),
+    keywords: ["gldt-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-feature-flag-client-token",
+    label: "Gitlab Feature Flag Client Token",
+    regex: new RegExp("glffct-[0-9a-zA-Z_\\-]{20}", ""),
+    keywords: ["glffct-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-feed-token",
+    label: "Gitlab Feed Token",
+    regex: new RegExp("glft-[0-9a-zA-Z_\\-]{20}", ""),
+    keywords: ["glft-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-incoming-mail-token",
+    label: "Gitlab Incoming Mail Token",
+    regex: new RegExp("glimt-[0-9a-zA-Z_\\-]{25}", ""),
+    keywords: ["glimt-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-kubernetes-agent-token",
+    label: "Gitlab Kubernetes Agent Token",
+    regex: new RegExp("glagent-[0-9a-zA-Z_\\-]{50}", ""),
+    keywords: ["glagent-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-oauth-app-secret",
+    label: "Gitlab OAUTH App Secret",
+    regex: new RegExp("gloas-[0-9a-zA-Z_\\-]{64}", ""),
+    keywords: ["gloas-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-pat",
+    label: "Gitlab PAT",
+    regex: new RegExp("glpat-[\\w-]{20}", ""),
+    keywords: ["glpat-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-pat-routable",
+    label: "Gitlab PAT Routable",
+    regex: new RegExp("\\bglpat-[0-9a-zA-Z_-]{27,300}\\.[0-9a-z]{2}[0-9a-z]{7}\\b", ""),
+    keywords: ["glpat-"],
+    entropy: 4
+  },
+  {
+    id: "gitlab-ptt",
+    label: "Gitlab Ptt",
+    regex: new RegExp("glptt-[0-9a-f]{40}", ""),
+    keywords: ["glptt-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-rrt",
+    label: "Gitlab Rrt",
+    regex: new RegExp("GR1348941[\\w-]{20}", ""),
+    keywords: ["gr1348941"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-runner-authentication-token",
+    label: "Gitlab Runner Authentication Token",
+    regex: new RegExp("glrt-[0-9a-zA-Z_\\-]{20}", ""),
+    keywords: ["glrt-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-runner-authentication-token-routable",
+    label: "Gitlab Runner Authentication Token Routable",
+    regex: new RegExp("\\bglrt-t\\d_[0-9a-zA-Z_\\-]{27,300}\\.[0-9a-z]{2}[0-9a-z]{7}\\b", ""),
+    keywords: ["glrt-"],
+    entropy: 4
+  },
+  {
+    id: "gitlab-scim-token",
+    label: "Gitlab Scim Token",
+    regex: new RegExp("glsoat-[0-9a-zA-Z_\\-]{20}", ""),
+    keywords: ["glsoat-"],
+    entropy: 3
+  },
+  {
+    id: "gitlab-session-cookie",
+    label: "Gitlab Session Cookie",
+    regex: new RegExp("_gitlab_session=[0-9a-z]{32}", ""),
+    keywords: ["_gitlab_session="],
+    entropy: 3
+  },
+  {
+    id: "gitter-access-token",
+    label: "Gitter Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:gitter)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9_-]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["gitter"]
+  },
+  {
+    id: "gocardless-api-token",
+    label: "Gocardless API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:gocardless)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(live_[a-z0-9\\-_=]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["live_", "gocardless"]
+  },
+  {
+    id: "grafana-api-key",
+    label: "Grafana API Key",
+    regex: new RegExp(`\\b(eyJrIjoi[A-Za-z0-9]{70,400}={0,3})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["eyjrijoi"],
+    entropy: 3
+  },
+  {
+    id: "grafana-cloud-api-token",
+    label: "Grafana Cloud API Token",
+    regex: new RegExp(`\\b(glc_[A-Za-z0-9+/]{32,400}={0,3})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["glc_"],
+    entropy: 3
+  },
+  {
+    id: "grafana-service-account-token",
+    label: "Grafana Service Account Token",
+    regex: new RegExp(`\\b(glsa_[A-Za-z0-9]{32}_[A-Fa-f0-9]{8})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["glsa_"],
+    entropy: 3
+  },
+  {
+    id: "harness-api-key",
+    label: "Harness API Key",
+    regex: new RegExp("(?:pat|sat)\\.[a-zA-Z0-9_-]{22}\\.[a-zA-Z0-9]{24}\\.[a-zA-Z0-9]{20}", ""),
+    keywords: ["pat.", "sat."]
+  },
+  {
+    id: "hashicorp-tf-api-token",
+    label: "Hashicorp Tf API Token",
+    regex: new RegExp("[a-z0-9]{14}\\.(?:atlasv1)\\.[a-z0-9\\-_=]{60,70}", "i"),
+    keywords: ["atlasv1"],
+    entropy: 3.5
+  },
+  {
+    id: "hashicorp-tf-password",
+    label: "Hashicorp Tf Password",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:administrator_login_password|password)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}("[a-z0-9=_\\-]{8,20}")(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["administrator_login_password", "password"],
+    entropy: 2
+  },
+  {
+    id: "heroku-api-key",
+    label: "Heroku API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:heroku)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["heroku"]
+  },
+  {
+    id: "heroku-api-key-v2",
+    label: "Heroku API Key V2",
+    regex: new RegExp(`\\b((HRKU-AA[0-9a-zA-Z_-]{58}))(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["hrku-aa"],
+    entropy: 4
+  },
+  {
+    id: "hubspot-api-key",
+    label: "Hubspot API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:hubspot)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["hubspot"]
+  },
+  {
+    id: "huggingface-access-token",
+    label: "Huggingface Access Token",
+    regex: new RegExp(`\\b(hf_(?:[a-z]{34}))(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["hf_"],
+    entropy: 2
+  },
+  {
+    id: "huggingface-organization-api-token",
+    label: "Huggingface Organization API Token",
+    regex: new RegExp(`\\b(api_org_(?:[a-z]{34}))(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["api_org_"],
+    entropy: 2
+  },
+  {
+    id: "infracost-api-token",
+    label: "Infracost API Token",
+    regex: new RegExp(`\\b(ico-[a-zA-Z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["ico-"],
+    entropy: 3
+  },
+  {
+    id: "intercom-api-key",
+    label: "Intercom API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:intercom)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{60})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["intercom"]
+  },
+  {
+    id: "intra42-client-secret",
+    label: "Intra42 Client Secret",
+    regex: new RegExp(`\\b(s-s4t2(?:ud|af)-[abcdef0123456789]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["intra", "s-s4t2ud-", "s-s4t2af-"],
+    entropy: 3
+  },
+  {
+    id: "jfrog-api-key",
+    label: "Jfrog API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:jfrog|artifactory|bintray|xray)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{73})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["jfrog", "artifactory", "bintray", "xray"]
+  },
+  {
+    id: "jfrog-identity-token",
+    label: "Jfrog Identity Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:jfrog|artifactory|bintray|xray)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["jfrog", "artifactory", "bintray", "xray"]
+  },
+  {
+    id: "jwt",
+    label: "JWT",
+    regex: new RegExp(`\\b(ey[a-zA-Z0-9]{17,}\\.ey[a-zA-Z0-9\\/\\\\_-]{17,}\\.(?:[a-zA-Z0-9\\/\\\\_-]{10,}={0,2})?)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["ey"],
+    entropy: 3
+  },
+  {
+    id: "jwt-base64",
+    label: "JWT Base64",
+    regex: new RegExp("\\bZXlK(?:(?<alg>aGJHY2lPaU)|(?<apu>aGNIVWlPaU)|(?<apv>aGNIWWlPaU)|(?<aud>aGRXUWlPaU)|(?<b64>aU5qUWlP)|(?<crit>amNtbDBJanBi)|(?<cty>amRIa2lPaU)|(?<epk>bGNHc2lPbn)|(?<enc>bGJtTWlPaU)|(?<jku>cWEzVWlPaU)|(?<jwk>cWQyc2lPb)|(?<iss>cGMzTWlPaU)|(?<iv>cGRpSTZJ)|(?<kid>cmFXUWlP)|(?<key_ops>clpYbGZiM0J6SWpwY)|(?<kty>cmRIa2lPaUp)|(?<nonce>dWIyNWpaU0k2)|(?<p2c>d01tTWlP)|(?<p2s>d01uTWlPaU)|(?<ppt>d2NIUWlPaU)|(?<sub>emRXSWlPaU)|(?<svt>emRuUWlP)|(?<tag>MFlXY2lPaU)|(?<typ>MGVYQWlPaUp)|(?<url>MWNtd2l)|(?<use>MWMyVWlPaUp)|(?<ver>MlpYSWlPaU)|(?<version>MlpYSnphVzl1SWpv)|(?<x>NElqb2)|(?<x5c>NE5XTWlP)|(?<x5t>NE5YUWlPaU)|(?<x5ts256>NE5YUWpVekkxTmlJNkl)|(?<x5u>NE5YVWlPaU)|(?<zip>NmFYQWlPaU))[a-zA-Z0-9\\/\\\\_+\\-\\r\\n]{40,}={0,2}", ""),
+    keywords: ["zxlk"],
+    entropy: 2
+  },
+  {
+    id: "kraken-access-token",
+    label: "Kraken Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:kraken)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9\\/=_\\+\\-]{80,90})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["kraken"]
+  },
+  {
+    id: "kubernetes-secret-yaml",
+    label: "Kubernetes Secret YAML",
+    regex: new RegExp(`(?:\\bkind:[ \\t]*["']?\\bsecret\\b["']?[\\s\\S]{0,200}?\\bdata:[\\s\\S]{0,100}?\\s+([\\w.-]+:(?:[ \\t]*(?:\\||>[-+]?)\\s+)?[ \\t]*(?:["']?[a-z0-9+/]{10,}={0,3}["']?|\\{\\{[ \\t\\w"|$:=,.-]+}}|""|''))|\\bdata:[\\s\\S]{0,100}?\\s+([\\w.-]+:(?:[ \\t]*(?:\\||>[-+]?)\\s+)?[ \\t]*(?:["']?[a-z0-9+/]{10,}={0,3}["']?|\\{\\{[ \\t\\w"|$:=,.-]+}}|""|''))[\\s\\S]{0,200}?\\bkind:[ \\t]*["']?\\bsecret\\b["']?)`, "i"),
+    keywords: ["secret"],
+    allowlist: {
+      regexes: [
+        { regex: new RegExp(`[\\w.-]+:(?:[ \\t]*(?:\\||>[-+]?)\\s+)?[ \\t]*(?:\\{\\{[ \\t\\w"|$:=,.-]+}}|""|'')`, "") },
+        { regex: new RegExp("(kind:[\\s\\S]+\\n---\\n[\\s\\S]+\\bdata:|data:[\\s\\S]+\\n---\\n[\\s\\S]+\\bkind:)", "") }
+      ]
+    }
+  },
+  {
+    id: "kucoin-access-token",
+    label: "Kucoin Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:kucoin)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{24})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["kucoin"]
+  },
+  {
+    id: "kucoin-secret-key",
+    label: "Kucoin Secret Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:kucoin)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["kucoin"]
+  },
+  {
+    id: "launchdarkly-access-token",
+    label: "Launchdarkly Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:launchdarkly)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["launchdarkly"]
+  },
+  {
+    id: "linear-api-key",
+    label: "Linear API Key",
+    regex: new RegExp("lin_api_[a-z0-9]{40}", "i"),
+    keywords: ["lin_api_"],
+    entropy: 2
+  },
+  {
+    id: "linear-client-secret",
+    label: "Linear Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:linear)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["linear"],
+    entropy: 2
+  },
+  {
+    id: "linkedin-client-id",
+    label: "Linkedin Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:linked[_-]?in)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{14})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["linkedin", "linked_in", "linked-in"],
+    entropy: 2
+  },
+  {
+    id: "linkedin-client-secret",
+    label: "Linkedin Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:linked[_-]?in)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["linkedin", "linked_in", "linked-in"],
+    entropy: 2
+  },
+  {
+    id: "lob-api-key",
+    label: "Lob API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:lob)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}((live|test)_[a-f0-9]{35})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["test_", "live_"]
+  },
+  {
+    id: "lob-pub-api-key",
+    label: "Lob Pub API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:lob)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}((test|live)_pub_[a-f0-9]{31})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["test_pub", "live_pub", "_pub"]
+  },
+  {
+    id: "looker-client-id",
+    label: "Looker Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:looker)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{20})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["looker"]
+  },
+  {
+    id: "looker-client-secret",
+    label: "Looker Client Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:looker)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{24})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["looker"]
+  },
+  {
+    id: "mailchimp-api-key",
+    label: "Mailchimp API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:MailchimpSDK.initialize|mailchimp)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{32}-us\\d\\d)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["mailchimp"]
+  },
+  {
+    id: "mailgun-private-api-token",
+    label: "Mailgun Private API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:mailgun)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(key-[a-f0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["mailgun"]
+  },
+  {
+    id: "mailgun-pub-key",
+    label: "Mailgun Pub Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:mailgun)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(pubkey-[a-f0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["mailgun"]
+  },
+  {
+    id: "mailgun-signing-key",
+    label: "Mailgun Signing Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:mailgun)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-h0-9]{32}-[a-h0-9]{8}-[a-h0-9]{8})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["mailgun"]
+  },
+  {
+    id: "mapbox-api-token",
+    label: "Mapbox API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:mapbox)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(pk\\.[a-z0-9]{60}\\.[a-z0-9]{22})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["mapbox"]
+  },
+  {
+    id: "mattermost-access-token",
+    label: "Mattermost Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:mattermost)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{26})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["mattermost"]
+  },
+  {
+    id: "maxmind-license-key",
+    label: "Maxmind License Key",
+    regex: new RegExp(`\\b([A-Za-z0-9]{6}_[A-Za-z0-9]{29}_mmk)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["_mmk"],
+    entropy: 4
+  },
+  {
+    id: "messagebird-api-token",
+    label: "Messagebird API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:message[_-]?bird)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{25})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["messagebird", "message-bird", "message_bird"]
+  },
+  {
+    id: "messagebird-client-id",
+    label: "Messagebird Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:message[_-]?bird)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["messagebird", "message-bird", "message_bird"]
+  },
+  {
+    id: "microsoft-teams-webhook",
+    label: "Microsoft Teams Webhook",
+    regex: new RegExp("https://[a-z0-9]+\\.webhook\\.office\\.com/webhookb2/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}@[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}/IncomingWebhook/[a-z0-9]{32}/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}", ""),
+    keywords: ["webhook.office.com", "webhookb2", "incomingwebhook"]
+  },
+  {
+    id: "netlify-access-token",
+    label: "Netlify Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:netlify)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{40,46})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["netlify"]
+  },
+  {
+    id: "new-relic-browser-api-token",
+    label: "New Relic Browser API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:new-relic|newrelic|new_relic)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(NRJS-[a-f0-9]{19})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["nrjs-"]
+  },
+  {
+    id: "new-relic-insert-key",
+    label: "New Relic Insert Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:new-relic|newrelic|new_relic)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(NRII-[a-z0-9-]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["nrii-"]
+  },
+  {
+    id: "new-relic-user-api-id",
+    label: "New Relic User API ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:new-relic|newrelic|new_relic)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["new-relic", "newrelic", "new_relic"]
+  },
+  {
+    id: "new-relic-user-api-key",
+    label: "New Relic User API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:new-relic|newrelic|new_relic)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(NRAK-[a-z0-9]{27})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["nrak"]
+  },
+  {
+    id: "notion-api-token",
+    label: "Notion API Token",
+    regex: new RegExp(`\\b(ntn_[0-9]{11}[A-Za-z0-9]{32}[A-Za-z0-9]{3})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["ntn_"],
+    entropy: 4
+  },
+  {
+    id: "npm-access-token",
+    label: "NPM Access Token",
+    regex: new RegExp(`\\b(npm_[a-z0-9]{36})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["npm_"],
+    entropy: 2
+  },
+  {
+    id: "nuget-config-password",
+    label: "Nuget Config Password",
+    regex: new RegExp('<add key=\\"(?:(?:ClearText)?Password)\\"\\s*value=\\"(.{8,})\\"\\s*/>', "i"),
+    keywords: ["<add key="],
+    entropy: 1,
+    allowlist: {
+      regexes: [
+        { regex: new RegExp("33f!!lloppa", "") },
+        { regex: new RegExp("hal\\+9ooo_da!sY", "") },
+        { regex: new RegExp("^\\%\\S.*\\%$", "") }
+      ]
+    }
+  },
+  {
+    id: "nytimes-access-token",
+    label: "Nytimes Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:nytimes|new-york-times,|newyorktimes)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9=_\\-]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["nytimes", "new-york-times", "newyorktimes"]
+  },
+  {
+    id: "octopus-deploy-api-key",
+    label: "Octopus Deploy API Key",
+    regex: new RegExp(`\\b(API-[A-Z0-9]{26})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["api-"],
+    entropy: 3
+  },
+  {
+    id: "okta-access-token",
+    label: "Okta Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:[\\w.-]{0,50}?(?:(?:[Oo]kta|OKTA))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3})(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(00[\\w=\\-]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["okta"],
+    entropy: 4
+  },
+  {
+    id: "openai-api-key",
+    label: "Openai API Key",
+    regex: new RegExp(`\\b(sk-(?:proj|svcacct|admin)-(?:[A-Za-z0-9_-]{74}|[A-Za-z0-9_-]{58})T3BlbkFJ(?:[A-Za-z0-9_-]{74}|[A-Za-z0-9_-]{58})\\b|sk-[a-zA-Z0-9]{20}T3BlbkFJ[a-zA-Z0-9]{20})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["t3blbkfj"],
+    entropy: 3
+  },
+  {
+    id: "openshift-user-token",
+    label: "Openshift User Token",
+    regex: new RegExp("\\b(sha256~[\\w-]{43})(?:[^\\w-]|$)", ""),
+    keywords: ["sha256~"],
+    entropy: 3.5
+  },
+  {
+    id: "perplexity-api-key",
+    label: "Perplexity API Key",
+    regex: new RegExp(`\\b(pplx-[a-zA-Z0-9]{48})(?:[\\x60'"\\s;]|\\\\[nr]|$|\\b)`, ""),
+    keywords: ["pplx-"],
+    entropy: 4
+  },
+  {
+    id: "plaid-api-token",
+    label: "Plaid API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:plaid)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(access-(?:sandbox|development|production)-[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["plaid"]
+  },
+  {
+    id: "plaid-client-id",
+    label: "Plaid Client ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:plaid)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{24})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["plaid"],
+    entropy: 3.5
+  },
+  {
+    id: "plaid-secret-key",
+    label: "Plaid Secret Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:plaid)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{30})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["plaid"],
+    entropy: 3.5
+  },
+  {
+    id: "planetscale-api-token",
+    label: "Planetscale API Token",
+    regex: new RegExp(`\\b(pscale_tkn_[\\w=\\.-]{32,64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["pscale_tkn_"],
+    entropy: 3
+  },
+  {
+    id: "planetscale-oauth-token",
+    label: "Planetscale OAUTH Token",
+    regex: new RegExp(`\\b(pscale_oauth_[\\w=\\.-]{32,64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["pscale_oauth_"],
+    entropy: 3
+  },
+  {
+    id: "planetscale-password",
+    label: "Planetscale Password",
+    regex: new RegExp(`\\b(pscale_pw_[\\w=\\.-]{32,64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["pscale_pw_"],
+    entropy: 3
+  },
+  {
+    id: "postman-api-token",
+    label: "Postman API Token",
+    regex: new RegExp(`\\b(PMAK-[a-f0-9]{24}\\-[a-f0-9]{34})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["pmak-"],
+    entropy: 3
+  },
+  {
+    id: "prefect-api-token",
+    label: "Prefect API Token",
+    regex: new RegExp(`\\b(pnu_[a-zA-Z0-9]{36})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["pnu_"],
+    entropy: 2
+  },
+  {
+    id: "private-key",
+    label: "Private Key",
+    regex: new RegExp("-----BEGIN[ A-Z0-9_-]{0,100}PRIVATE KEY(?: BLOCK)?-----[\\s\\S-]{64,}?KEY(?: BLOCK)?-----", "i"),
+    keywords: ["-----begin"]
+  },
+  {
+    id: "privateai-api-token",
+    label: "Privateai API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:[\\w.-]{0,50}?(?:private[_-]?ai)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3})(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{32})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["privateai", "private_ai", "private-ai"],
+    entropy: 3
+  },
+  {
+    id: "pulumi-api-token",
+    label: "Pulumi API Token",
+    regex: new RegExp(`\\b(pul-[a-f0-9]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["pul-"],
+    entropy: 2
+  },
+  {
+    id: "pypi-upload-token",
+    label: "Pypi Upload Token",
+    regex: new RegExp("pypi-AgEIcHlwaS5vcmc[\\w-]{50,1000}", ""),
+    keywords: ["pypi-ageichlwas5vcmc"],
+    entropy: 3
+  },
+  {
+    id: "rapidapi-access-token",
+    label: "Rapidapi Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:rapidapi)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9_-]{50})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["rapidapi"]
+  },
+  {
+    id: "readme-api-token",
+    label: "Readme API Token",
+    regex: new RegExp(`\\b(rdme_[a-z0-9]{70})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["rdme_"],
+    entropy: 2
+  },
+  {
+    id: "rubygems-api-token",
+    label: "Rubygems API Token",
+    regex: new RegExp(`\\b(rubygems_[a-f0-9]{48})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["rubygems_"],
+    entropy: 2
+  },
+  {
+    id: "scalingo-api-token",
+    label: "Scalingo API Token",
+    regex: new RegExp(`\\b(tk-us-[\\w-]{48})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["tk-us-"],
+    entropy: 2
+  },
+  {
+    id: "sendbird-access-id",
+    label: "Sendbird Access ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:sendbird)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sendbird"]
+  },
+  {
+    id: "sendbird-access-token",
+    label: "Sendbird Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:sendbird)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sendbird"]
+  },
+  {
+    id: "sendgrid-api-token",
+    label: "Sendgrid API Token",
+    regex: new RegExp(`\\b(SG\\.[a-z0-9=_\\-\\.]{66})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sg."],
+    entropy: 2
+  },
+  {
+    id: "sendinblue-api-token",
+    label: "Sendinblue API Token",
+    regex: new RegExp(`\\b(xkeysib-[a-f0-9]{64}\\-[a-z0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["xkeysib-"],
+    entropy: 2
+  },
+  {
+    id: "sentry-access-token",
+    label: "Sentry Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:sentry)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sentry"],
+    entropy: 3
+  },
+  {
+    id: "sentry-org-token",
+    label: "Sentry Org Token",
+    regex: new RegExp("\\bsntrys_eyJpYXQiO[a-zA-Z0-9+/]{10,200}(?:LCJyZWdpb25fdXJs|InJlZ2lvbl91cmwi|cmVnaW9uX3VybCI6)[a-zA-Z0-9+/]{10,200}={0,2}_[a-zA-Z0-9+/]{43}(?:[^a-zA-Z0-9+/]|$)", ""),
+    keywords: ["sntrys_eyjpyxqio"],
+    entropy: 4.5
+  },
+  {
+    id: "sentry-user-token",
+    label: "Sentry User Token",
+    regex: new RegExp(`\\b(sntryu_[a-f0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sntryu_"],
+    entropy: 3.5
+  },
+  {
+    id: "settlemint-application-access-token",
+    label: "Settlemint Application Access Token",
+    regex: new RegExp(`\\b(sm_aat_[a-zA-Z0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sm_aat"],
+    entropy: 3
+  },
+  {
+    id: "settlemint-personal-access-token",
+    label: "Settlemint Personal Access Token",
+    regex: new RegExp(`\\b(sm_pat_[a-zA-Z0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sm_pat"],
+    entropy: 3
+  },
+  {
+    id: "settlemint-service-access-token",
+    label: "Settlemint Service Access Token",
+    regex: new RegExp(`\\b(sm_sat_[a-zA-Z0-9]{16})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sm_sat"],
+    entropy: 3
+  },
+  {
+    id: "shippo-api-token",
+    label: "Shippo API Token",
+    regex: new RegExp(`\\b(shippo_(?:live|test)_[a-fA-F0-9]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["shippo_"],
+    entropy: 2
+  },
+  {
+    id: "shopify-access-token",
+    label: "Shopify Access Token",
+    regex: new RegExp("shpat_[a-fA-F0-9]{32}", ""),
+    keywords: ["shpat_"],
+    entropy: 2
+  },
+  {
+    id: "shopify-custom-access-token",
+    label: "Shopify Custom Access Token",
+    regex: new RegExp("shpca_[a-fA-F0-9]{32}", ""),
+    keywords: ["shpca_"],
+    entropy: 2
+  },
+  {
+    id: "shopify-private-app-access-token",
+    label: "Shopify Private App Access Token",
+    regex: new RegExp("shppa_[a-fA-F0-9]{32}", ""),
+    keywords: ["shppa_"],
+    entropy: 2
+  },
+  {
+    id: "shopify-shared-secret",
+    label: "Shopify Shared Secret",
+    regex: new RegExp("shpss_[a-fA-F0-9]{32}", ""),
+    keywords: ["shpss_"],
+    entropy: 2
+  },
+  {
+    id: "sidekiq-secret",
+    label: "Sidekiq Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:BUNDLE_ENTERPRISE__CONTRIBSYS__COM|BUNDLE_GEMS__CONTRIBSYS__COM)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-f0-9]{8}:[a-f0-9]{8})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["bundle_enterprise__contribsys__com", "bundle_gems__contribsys__com"]
+  },
+  {
+    id: "sidekiq-sensitive-url",
+    label: "Sidekiq Sensitive URL",
+    regex: new RegExp("\\bhttps?://([a-f0-9]{8}:[a-f0-9]{8})@(?:gems.contribsys.com|enterprise.contribsys.com)(?:[\\/|\\#|\\?|:]|$)", "i"),
+    keywords: ["gems.contribsys.com", "enterprise.contribsys.com"]
+  },
+  {
+    id: "slack-app-token",
+    label: "Slack App Token",
+    regex: new RegExp("xapp-\\d-[A-Z0-9]+-\\d+-[a-z0-9]+", "i"),
+    keywords: ["xapp"],
+    entropy: 2
+  },
+  {
+    id: "slack-bot-token",
+    label: "Slack Bot Token",
+    regex: new RegExp("xoxb-[0-9]{10,13}-[0-9]{10,13}[a-zA-Z0-9-]*", ""),
+    keywords: ["xoxb"],
+    entropy: 3
+  },
+  {
+    id: "slack-config-access-token",
+    label: "Slack Config Access Token",
+    regex: new RegExp("xoxe.xox[bp]-\\d-[A-Z0-9]{163,166}", "i"),
+    keywords: ["xoxe.xoxb-", "xoxe.xoxp-"],
+    entropy: 2
+  },
+  {
+    id: "slack-config-refresh-token",
+    label: "Slack Config Refresh Token",
+    regex: new RegExp("xoxe-\\d-[A-Z0-9]{146}", "i"),
+    keywords: ["xoxe-"],
+    entropy: 2
+  },
+  {
+    id: "slack-legacy-bot-token",
+    label: "Slack Legacy Bot Token",
+    regex: new RegExp("xoxb-[0-9]{8,14}-[a-zA-Z0-9]{18,26}", ""),
+    keywords: ["xoxb"],
+    entropy: 2
+  },
+  {
+    id: "slack-legacy-token",
+    label: "Slack Legacy Token",
+    regex: new RegExp("xox[os]-\\d+-\\d+-\\d+-[a-fA-F\\d]+", ""),
+    keywords: ["xoxo", "xoxs"],
+    entropy: 2
+  },
+  {
+    id: "slack-legacy-workspace-token",
+    label: "Slack Legacy Workspace Token",
+    regex: new RegExp("xox[ar]-(?:\\d-)?[0-9a-zA-Z]{8,48}", ""),
+    keywords: ["xoxa", "xoxr"],
+    entropy: 2
+  },
+  {
+    id: "slack-user-token",
+    label: "Slack User Token",
+    regex: new RegExp("xox[pe](?:-[0-9]{10,13}){3}-[a-zA-Z0-9-]{28,34}", ""),
+    keywords: ["xoxp-", "xoxe-"],
+    entropy: 2
+  },
+  {
+    id: "slack-webhook-url",
+    label: "Slack Webhook URL",
+    regex: new RegExp("(?:https?://)?hooks.slack.com/(?:services|workflows|triggers)/[A-Za-z0-9+/]{43,56}", ""),
+    keywords: ["hooks.slack.com"]
+  },
+  {
+    id: "snyk-api-token",
+    label: "Snyk API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:snyk[_.-]?(?:(?:api|oauth)[_.-]?)?(?:key|token))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["snyk"]
+  },
+  {
+    id: "sonar-api-token",
+    label: "Sonar API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:sonar[_.-]?(login|token))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}((?:squ_|sqp_|sqa_)?[a-z0-9=_\\-]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sonar"],
+    secretGroup: 2
+  },
+  {
+    id: "sourcegraph-access-token",
+    label: "Sourcegraph Access Token",
+    regex: new RegExp(`\\b(\\b(sgp_(?:[a-fA-F0-9]{16}|local)_[a-fA-F0-9]{40}|sgp_[a-fA-F0-9]{40}|[a-fA-F0-9]{40})\\b)(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sgp_", "sourcegraph"],
+    entropy: 3
+  },
+  {
+    id: "square-access-token",
+    label: "Square Access Token",
+    regex: new RegExp(`\\b((?:EAAA|sq0atp-)[\\w-]{22,60})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sq0atp-", "eaaa"],
+    entropy: 2
+  },
+  {
+    id: "squarespace-access-token",
+    label: "Squarespace Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:squarespace)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["squarespace"]
+  },
+  {
+    id: "stripe-access-token",
+    label: "Stripe Access Token",
+    regex: new RegExp(`\\b((?:sk|rk)_(?:test|live|prod)_[a-zA-Z0-9]{10,99})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["sk_test", "sk_live", "sk_prod", "rk_test", "rk_live", "rk_prod"],
+    entropy: 2
+  },
+  {
+    id: "sumologic-access-id",
+    label: "Sumologic Access ID",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:[\\w.-]{0,50}?(?:(?:[Ss]umo|SUMO))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3})(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(su[a-zA-Z0-9]{12})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sumo"],
+    entropy: 3
+  },
+  {
+    id: "sumologic-access-token",
+    label: "Sumologic Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:(?:[Ss]umo|SUMO))(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{64})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["sumo"],
+    entropy: 3
+  },
+  {
+    id: "telegram-bot-api-token",
+    label: "Telegram Bot API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:telegr)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9]{5,16}:(?:A)[a-z0-9_\\-]{34})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["telegr"]
+  },
+  {
+    id: "travisci-access-token",
+    label: "Travisci Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:travis)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{22})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["travis"]
+  },
+  {
+    id: "twilio-api-key",
+    label: "Twilio API Key",
+    regex: new RegExp("SK[0-9a-fA-F]{32}", ""),
+    keywords: ["sk"],
+    entropy: 3
+  },
+  {
+    id: "twitch-api-token",
+    label: "Twitch API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:twitch)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{30})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["twitch"]
+  },
+  {
+    id: "twitter-access-secret",
+    label: "Twitter Access Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:twitter)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{45})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["twitter"]
+  },
+  {
+    id: "twitter-access-token",
+    label: "Twitter Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:twitter)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([0-9]{15,25}-[a-zA-Z0-9]{20,40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["twitter"]
+  },
+  {
+    id: "twitter-api-key",
+    label: "Twitter API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:twitter)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{25})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["twitter"]
+  },
+  {
+    id: "twitter-api-secret",
+    label: "Twitter API Secret",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:twitter)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{50})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["twitter"]
+  },
+  {
+    id: "twitter-bearer-token",
+    label: "Twitter Bearer Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:twitter)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(A{22}[a-zA-Z0-9%]{80,100})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["twitter"]
+  },
+  {
+    id: "typeform-api-token",
+    label: "Typeform API Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:typeform)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(tfp_[a-z0-9\\-_\\.=]{59})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["tfp_"]
+  },
+  {
+    id: "vault-batch-token",
+    label: "Vault Batch Token",
+    regex: new RegExp(`\\b(hvb\\.[\\w-]{138,300})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, ""),
+    keywords: ["hvb."],
+    entropy: 4
+  },
+  {
+    id: "vault-service-token",
+    label: "Vault Service Token",
+    regex: new RegExp(`\\b((?:hvs\\.[\\w-]{90,120}|s\\.(?:[a-z0-9]{24})))(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["hvs.", "s."],
+    entropy: 3.5,
+    allowlist: {
+      regexes: [
+        { regex: new RegExp("s\\.[A-Za-z]{24}", "") }
+      ]
+    }
+  },
+  {
+    id: "yandex-access-token",
+    label: "Yandex Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:yandex)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(t1\\.[A-Z0-9a-z_-]+[=]{0,2}\\.[A-Z0-9a-z_-]{86}[=]{0,2})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["yandex"]
+  },
+  {
+    id: "yandex-api-key",
+    label: "Yandex API Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:yandex)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(AQVN[A-Za-z0-9_\\-]{35,38})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["yandex"]
+  },
+  {
+    id: "yandex-aws-access-token",
+    label: "Yandex AWS Access Token",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:yandex)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}(YC[a-zA-Z0-9_\\-]{38})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["yandex"]
+  },
+  {
+    id: "zendesk-secret-key",
+    label: "Zendesk Secret Key",
+    regex: new RegExp(`[\\w.-]{0,50}?(?:zendesk)(?:[ \\t\\w.-]{0,20})[\\s'"]{0,3}(?:=|>|:{1,3}=|\\|\\||:|=>|\\?=|,)[\\x60'"\\s=]{0,5}([a-z0-9]{40})(?:[\\x60'"\\s;]|\\\\[nr]|$)`, "i"),
+    keywords: ["zendesk"]
+  }
+];
+// src/entropy.ts
+function shannonEntropy(s) {
+  if (s.length === 0) return 0;
+  const freq = /* @__PURE__ */ new Map();
+  for (const ch of s) {
+    freq.set(ch, (_nullishCoalesce(freq.get(ch), () => ( 0))) + 1);
+  }
+  let entropy = 0;
+  const len = s.length;
+  for (const count of freq.values()) {
+    const p = count / len;
+    entropy -= p * Math.log2(p);
+  }
+  return entropy;
+}
+// src/index.ts
+var keywordIndex = /* @__PURE__ */ new Map();
+var rulesWithoutKeywords = [];
+for (const rule of rules) {
+  if (rule.keywords.length === 0) {
+    rulesWithoutKeywords.push(rule);
+  } else {
+    for (const kw of rule.keywords) {
+      const lower = kw.toLowerCase();
+      let list = keywordIndex.get(lower);
+      if (!list) {
+        list = [];
+        keywordIndex.set(lower, list);
+      }
+      list.push(rule);
+    }
+  }
+}
+function isGlobalAllowlisted(secret) {
+  for (const { regex } of globalAllowlist.regexes) {
+    if (regex.test(secret)) return true;
+  }
+  const lower = secret.toLowerCase();
+  for (const stopword of globalAllowlist.stopwords) {
+    if (lower === stopword.toLowerCase()) return true;
+  }
+  return false;
+}
+function isRuleAllowlisted(rule, secret, fullMatch, line) {
+  if (!rule.allowlist) return false;
+  if (rule.allowlist.regexes) {
+    for (const { regex, target } of rule.allowlist.regexes) {
+      const testStr = target === "line" ? line : target === "match" ? fullMatch : secret;
+      if (regex.test(testStr)) return true;
+    }
+  }
+  if (rule.allowlist.stopwords) {
+    const lower = secret.toLowerCase();
+    for (const stopword of rule.allowlist.stopwords) {
+      if (lower.includes(stopword.toLowerCase())) return true;
+    }
+  }
+  return false;
+}
+function getCandidateRules(inputLower) {
+  const candidates = /* @__PURE__ */ new Set();
+  for (const rule of rulesWithoutKeywords) {
+    candidates.add(rule);
+  }
+  for (const [keyword, kwRules] of keywordIndex) {
+    if (inputLower.includes(keyword)) {
+      for (const rule of kwRules) {
+        candidates.add(rule);
+      }
+    }
+  }
+  return candidates;
+}
+function getLineForIndex(input, index) {
+  const lineStart = input.lastIndexOf("\n", index - 1) + 1;
+  let lineEnd = input.indexOf("\n", index);
+  if (lineEnd === -1) lineEnd = input.length;
+  return input.slice(lineStart, lineEnd);
+}
+function extractSecret(match, rule) {
+  const groupIndex = _nullishCoalesce(rule.secretGroup, () => ( 1));
+  if (match[groupIndex] !== void 0) return match[groupIndex];
+  for (let i = 1; i < match.length; i++) {
+    if (match[i] !== void 0) return match[i];
+  }
+  return match[0];
+}
+var GENERIC_RULE_IDS = /* @__PURE__ */ new Set(["generic-api-key"]);
+function scan(input) {
+  if (!input) return [];
+  const inputLower = input.toLowerCase();
+  const candidates = getCandidateRules(inputLower);
+  const secrets = [];
+  const matchedRanges = [];
+  for (const rule of candidates) {
+    const regex = new RegExp(rule.regex.source, rule.regex.flags.replace("g", "") + "g");
+    let match;
+    while ((match = regex.exec(input)) !== null) {
+      const secret = extractSecret(match, rule);
+      if (!secret) continue;
+      const secretStart = input.indexOf(secret, match.index);
+      const start = secretStart >= 0 ? secretStart : match.index;
+      const end = start + secret.length;
+      const overlaps = matchedRanges.some(
+        (r) => start < r.end && end > r.start
+      );
+      if (overlaps) continue;
+      if (rule.entropy !== void 0) {
+        const entropy = shannonEntropy(secret);
+        if (entropy < rule.entropy) continue;
+      }
+      if (isGlobalAllowlisted(secret)) continue;
+      const line = getLineForIndex(input, match.index);
+      if (isRuleAllowlisted(rule, secret, match[0], line)) continue;
+      const confidence = GENERIC_RULE_IDS.has(rule.id) ? "medium" : "high";
+      secrets.push({
+        rule: rule.id,
+        label: rule.label,
+        text: secret,
+        confidence,
+        start,
+        end
+      });
+      matchedRanges.push({ start, end });
+      if (match[0].length === 0) regex.lastIndex++;
+    }
+  }
+  secrets.sort((a, b) => a.start - b.start);
+  return secrets;
+}
+function redact(input, replacer) {
+  const secrets = scan(input);
+  if (secrets.length === 0) return input;
+  let result = input;
+  for (let i = secrets.length - 1; i >= 0; i--) {
+    const secret = secrets[i];
+    const replacement = replacer(secret);
+    result = result.slice(0, secret.start) + replacement + result.slice(secret.end);
+  }
+  return result;
+}
+exports.redact = redact; exports.scan = scan; exports.shannonEntropy = shannonEntropy;
+//# sourceMappingURL=index.cjs.map