Skip to content

Add rule to detect GitLab Feed token

Dheeraj Joshi requested to merge djadmin-add-rule-gl-feed-token into master

Related issue: https://gitlab.com/gitlab-org/security-products/analyzers/secrets/-/issues/102

What does this MR do?

Add new detection rule for GitLab Feed tokens.

Why this is important?

Anyone who has your token can read activity and issue RSS feeds or your calendar feed as if they were you, including confidential issues.

Example

https://regex101.com/r/A99QS9/1

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Edited by Dheeraj Joshi

Merge request reports

Loading