Skip to content

Commit

Permalink
Remove YAML external references as FP
Browse files Browse the repository at this point in the history
  • Loading branch information
@aegilops
aegilops committed May 9, 2024
1 parent e7bb31a commit b129398
Showing 1 changed file with 5 additions and 1 deletion.
6 changes: 5 additions & 1 deletion configs/patterns.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -100,7 +100,7 @@ patterns:
- ^(?:keyPassphrase|password|key|[ \t]+|\$\{[^}]+}|(?:str|string|int|bool)( +#.*)?),?$
- ^(?:.* = )?(?:None|[Tt]rue|[Ff]alse|[Nn]ull|Default(?:Type)?|Event|[A-Z]+_KEY|VERSION|NAME|update|destroy|(?:dis|en)ableEventListeners|\.\.\.),?$
- ^(?:(?:this|self|obj)\.)(?:[A-Za-z_]+\,|[A-Za-z_].*)$
- ^(?:(?:[a-zA-Z_]+(?:\(\))?\.)*[a-zA-Z_]+\(\)|\|\s*)$|\{\{[^}]+\}\}|\$\{\{
- ^(?:(?:[a-zA-Z_]+(?:\(\))?\.)*[a-zA-Z_]+\(\)|\|\s*)$|\{\{[^}]+\}\}|\$\{\{ |^!Ref
- ^\s*(?:typing\.)?(?:[Tt]uple|[Ll]ist|[Dd]ict|Callable|Iterable|Sequence|Optional|Union)\[.*$
comments:
- "The hardcoded password is any length"
Expand Down Expand Up @@ -163,6 +163,8 @@ patterns:
(?:\n|\A)[ \t]*(?i)[a-z_-]*(?:secret|service_pass(wd|word|code|phrase)|pass(?:wd|word|code|phrase)?|key|token)[ \t]*:[ \t]*'
end: |
'([ \t]*[\r\n]|\z)
additional_not_match:
- \{\{[^{}]+\}\}
comments:
- "The hardcoded password is any length"
- "Some false positives in code might appear"
Expand All @@ -187,6 +189,8 @@ patterns:
(?:\n|\A)[ \t]*(?i)[a-z_-]*(?:secret|service_pass(wd|word|code|phrase)|pass(?:wd|word|code|phrase)?|key|token)[ \t]*:[ \t]*"
end: |
"([ \t]*[\r\n]|\z)
additional_not_match:
- \{\{[^{}]+\}\}
comments:
- "The hardcoded password is any length"
- "Some false positives in code might appear"
Expand Down

0 comments on commit b129398

Please sign in to comment.