Add Anthropic keys to client-side secret detection patterns (!165222) · Merge requests · GitLab.org / GitLab

Dheeraj Joshi requested to merge djadmin-secret-detection-pattern-add-anthropic-keys into master Sep 05, 2024

What does this MR do and why?

This MR adds the Anthropic keys pattern to client-side secret detection.

The pattern was provided by the Anthropic itself and is being added to the pipeline based secret detection ruleset with gitlab-org/security-products/analyzers/secrets!319 (merged).

A follow-up MR is being worked up for adding test coverage for all the secret detection patterns in the codebase.

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

How to set up and validate locally

Open any existing issue in the GDK instance
Add a comment with the following content:

Key: sk-ant-api03-TG2uMD7yZSuULPRIH-vHkx3A83RvSlBPuWIBPasjTUsfZUQ-adaTUDgIPaEIEWezgtfPPhtebgI4XpKgpF06Tw-YKk_YAAA
Another key: glpat-12345678901234567890

The warning should be prompted

Edited Sep 10, 2024 by Dheeraj Joshi

Add Anthropic keys to client-side secret detection patterns

What does this MR do and why?

MR acceptance checklist

Screenshots or screen recordings

How to set up and validate locally

Merge request reports