keyhog-scanner 0.5.40

keyhog-scanner: high-performance SIMD-accelerated secret detection engine
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41

schema_version = 1
detector_id = "sourcegraph-access-token"
service = "sourcegraph"
severity = "high"

[[positive]]
text = "SRC_ACCESS_TOKEN=sgp_719f3553f917bddb719f3553f917bddb719f3553"
credential = "sgp_719f3553f917bddb719f3553f917bddb719f3553"
reason = "Sourcegraph dotcom access token (sgp_<40 hex>)."

[[positive]]
text = "sourcegraph token: sgp_3957fd1bb1df7593_b9d77d9b315ff513b9d77d9b315ff513b9d77d9b"
credential = "sgp_3957fd1bb1df7593_b9d77d9b315ff513b9d77d9b315ff513b9d77d9b"
reason = "Sourcegraph instance-scoped token (sgp_<16 hex>_<40 hex>)."

[[positive]]
text = "SRC_LICENSE_KEY=slk_5dfb11bfd57399375dfb11bfd57399375dfb11bfd57399375dfb11bfd5739937"
credential = "slk_5dfb11bfd57399375dfb11bfd57399375dfb11bfd57399375dfb11bfd5739937"
reason = "Sourcegraph license key (slk_<64 hex>)."

[[negative]]
text = "SRC_ENDPOINT=https://sourcegraph.example.com"
reason = "Sourcegraph endpoint URL, no sgp_/slk_ token."

[[evasion]]
text = "sourcegraph sgp_719f3553f917bddb719f3553f917bddb719f3553"
credential = "sgp_719f3553f917bddb719f3553f917bddb719f3553"
reason = "Space-separated sourcegraph keyword + token."

[perf]
fixture_bytes = 4096
max_microseconds = 25000
note = "Standard single-file budget."

[scale]
fixture_bytes = 1048576
min_findings = 1
max_seconds = 2.0
note = "1 MiB filler + planted Sourcegraph token."

readme_claim = "900 service-specific detectors"