github.com/google/osv-scalibr@v0.4.1/veles/secrets/pypiapitoken/detector.go

github.com/google/osv-scalibr@v0.4.1/veles/secrets/pypiapitoken/detector.go (about)

     1  // Copyright 2025 Google LLC
     2  //
     3  // Licensed under the Apache License, Version 2.0 (the "License");
     4  // you may not use this file except in compliance with the License.
     5  // You may obtain a copy of the License at
     6  //
     7  //      http://www.apache.org/licenses/LICENSE-2.0
     8  //
     9  // Unless required by applicable law or agreed to in writing, software
    10  // distributed under the License is distributed on an "AS IS" BASIS,
    11  // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12  // See the License for the specific language governing permissions and
    13  // limitations under the License.
    14  
    15  // Package pypiapitoken contains a Veles Secret type and a Detector for
    16  // PyPI API Tokens (prefix `pypi-`).
    17  package pypiapitoken
    18  
    19  import (
    20  	"regexp"
    21  
    22  	"github.com/google/osv-scalibr/veles"
    23  	"github.com/google/osv-scalibr/veles/secrets/common/simpletoken"
    24  )
    25  
    26  // maxTokenLength is the maximum size of a PyPI API Token.
    27  const maxTokenLength = 150
    28  
    29  // keyRe is a regular expression that matches a PyPI API Token.
    30  // PyPI API Tokens have the form: `pypi-` followed by at least 85
    31  // alphanumeric characters.
    32  var keyRe = regexp.MustCompile(`pypi-[A-Za-z0-9-_]{85,}`)
    33  
    34  // NewDetector returns a new simpletoken.Detector that matches
    35  // PyPI API Tokens.
    36  func NewDetector() veles.Detector {
    37  	return simpletoken.Detector{
    38  		MaxLen: maxTokenLength,
    39  		Re:     keyRe,
    40  		FromMatch: func(b []byte) (veles.Secret, bool) {
    41  			return PyPIAPIToken{Token: string(b)}, true
    42  		},
    43  	}
    44  }