diff --git a/src/secret-scanning/data/public-docs.yml b/src/secret-scanning/data/public-docs.yml index 91b0c58921d7..408cb320706d 100644 --- a/src/secret-scanning/data/public-docs.yml +++ b/src/secret-scanning/data/public-docs.yml @@ -180,6 +180,83 @@ hasPushProtection: true hasValidityCheck: false isduplicate: false +- provider: Apify + supportedSecret: Apify Actor Run API Token + secretType: apify_actor_run_api_token + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Apify + supportedSecret: Apify Actor Run Proxy Password + secretType: apify_actor_run_proxy_password + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Apify + supportedSecret: Apify API Token + secretType: apify_api_token + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Apify + supportedSecret: Apify Integration API Token + secretType: apify_integration_api_token + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Apify + supportedSecret: Apify Proxy Password + secretType: apify_proxy_password + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Apify + supportedSecret: Apify UI Token + secretType: apify_ui_token + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Apify + supportedSecret: Apify Webhook Dispatch API Token + secretType: apify_webhook_dispatch_api_token + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false - provider: Asaas supportedSecret: Asaas API Token secretType: asaas_api_token @@ -516,6 +593,17 @@ hasPushProtection: false hasValidityCheck: false isduplicate: false +- provider: Azure + supportedSecret: Azure ML Internal Service Principal Key + secretType: azure_ml_interal_service_principal_identifiable_key + versions: + fpt: '*' + ghec: '*' + isPublic: true + isPrivateWithGhas: false + hasPushProtection: false + hasValidityCheck: false + isduplicate: false - provider: Azure supportedSecret: Azure ML Studio (classic) Web Service Key secretType: azure_ml_web_service_classic_identifiable_key @@ -754,7 +842,7 @@ isPublic: false isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Brevo supportedSecret: Sendinblue API Key @@ -766,7 +854,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Brevo supportedSecret: Sendinblue SMTP Key @@ -874,7 +962,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: true - provider: Checkout.com supportedSecret: Checkout.com Test Secret Key @@ -922,7 +1010,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: CircleCI supportedSecret: CircleCI Project Access Token @@ -991,7 +1079,18 @@ fpt: '*' ghec: '*' ghes: '*' - isPublic: false + isPublic: true + isPrivateWithGhas: true + hasPushProtection: true + hasValidityCheck: false + isduplicate: false +- provider: Contentful + supportedSecret: Contentful Web Token + secretType: contentful_web_token + versions: + fpt: '*' + ghec: '*' + isPublic: true isPrivateWithGhas: true hasPushProtection: true hasValidityCheck: false @@ -1123,7 +1222,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: DevCycle supportedSecret: DevCycle Client API Key @@ -1483,7 +1582,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: true - provider: Figma supportedSecret: Figma Personal Access Token @@ -1687,7 +1786,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: GoCardless supportedSecret: GoCardless Sandbox Access Token @@ -1699,7 +1798,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Google supportedSecret: Google API Key @@ -1919,7 +2018,7 @@ isPublic: false isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Heroku supportedSecret: Heroku Postgres Connection URL @@ -2099,7 +2198,7 @@ isPublic: false isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Ionic supportedSecret: Ionic Personal Access Token @@ -2430,7 +2529,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Mercury supportedSecret: Mercury Non-Production API Token @@ -2884,7 +2983,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Oracle supportedSecret: Oracle API Key @@ -3375,7 +3474,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: RunPod supportedSecret: RunPod API Key @@ -3698,7 +3797,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: true - provider: Slack supportedSecret: Slack API Token @@ -4116,7 +4215,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: VolcEngine supportedSecret: VolcEngine Access Key ID @@ -4224,7 +4323,7 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: false - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false - provider: Yandex supportedSecret: Yandex.Cloud API Key @@ -4343,5 +4442,5 @@ isPublic: true isPrivateWithGhas: true hasPushProtection: true - hasValidityCheck: false + hasValidityCheck: '{% ifversion fpt or ghes %}false{% else %}true{% endif %}' isduplicate: false diff --git a/src/secret-scanning/lib/config.json b/src/secret-scanning/lib/config.json index 4387286db07b..0191b228eec6 100644 --- a/src/secret-scanning/lib/config.json +++ b/src/secret-scanning/lib/config.json @@ -1,5 +1,5 @@ { - "sha": "c209eb8eb0bc87f9f310583501c824b877963f32", - "blob-sha": "562fbcd4d14faff58fbb1434b983fb53e480b060", + "sha": "a627ff0bef22dedd2ee339f750bf317ec9fd4a34", + "blob-sha": "fb8cffebc3c5d5710a273313de807e5abc809d6e", "targetFilename": "code-security/secret-scanning/introduction/supported-secret-scanning-patterns" } \ No newline at end of file