Remove obsolete GitLab token patterns (#781)

* remove obsolete Gitlab tokens

* custom ref for BM

* fix BM

Author: babenek

.ci/benchmark.txt

@@ -31,7 +31,7 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - 2024.10.23
         with:
           repository: Samsung/CredData
-          ref: 82bb772f02d9940e5729afd6359502fa44276bad
+          ref: 0155194e93ec8572bbf3a10ae90e88703ac722e5
 
       - name: Markup hashing
         run: |
@@ -87,7 +87,7 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - 2024.10.23
         with:
           repository: Samsung/CredData
-          ref: 82bb772f02d9940e5729afd6359502fa44276bad
+          ref: 0155194e93ec8572bbf3a10ae90e88703ac722e5
 
       - name: Markup hashing
         run: |
@@ -190,7 +190,7 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - 2024.10.23
         with:
           repository: Samsung/CredData
-          ref: 82bb772f02d9940e5729afd6359502fa44276bad
+          ref: 0155194e93ec8572bbf3a10ae90e88703ac722e5
 
       - name: Markup hashing
         run: |
@@ -378,7 +378,7 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - 2024.10.23
         with:
           repository: Samsung/CredData
-          ref: 82bb772f02d9940e5729afd6359502fa44276bad
+          ref: 0155194e93ec8572bbf3a10ae90e88703ac722e5
 
       - name: Markup hashing
         run: |

.github/workflows/benchmark.yml

@@ -92,7 +92,7 @@ jobs:
         run: |
           banner="$(python -m credsweeper --banner | head -1)"
           echo "banner = '${banner}'"
-          if [ "CredSweeper 1.13.2 crc32:8a90cc18" != "${banner}" ]; then
+          if [ "CredSweeper 1.13.2 crc32:ad013eee" != "${banner}" ]; then
             echo "Update the check for '${banner}'"
             exit 1
           fi

.github/workflows/check.yml

@@ -1121,32 +1121,6 @@
     - code
     - doc
 
-- name: Gitlab Incoming Email Token
-  severity: info
-  confidence: weak
-  type: pattern
-  values:
-    - (?:^|[^0-9A-Za-z_+-]|\\[0abfnrtv]|(?:%|\\x)[0-9A-Fa-f]{2}|\\[0-7]{3}|\\[Uu][0-9A-Fa-f]{4}|\x1B\[[0-9;]{0,80}m)(?P<value>[a-z0-9]{24,25})(?![=0-9A-Za-z_/+-])
-  filter_type: WeirdBase36Token
-  min_line_len: 24
-  required_regex: "[0-9A-Za-z_/+-]{15}"
-  target:
-    - code
-    - doc
-
-- name: Gitlab Feed Token
-  severity: info
-  confidence: weak
-  type: pattern
-  values:
-    - (?:^|[^0-9A-Za-z_+-]|\\[0abfnrtv]|(?:%|\\x)[0-9A-Fa-f]{2}|\\[0-7]{3}|\\[Uu][0-9A-Fa-f]{4}|\x1B\[[0-9;]{0,80}m)(?P<value>[0-9A-Za-z_-]{20})(?![=0-9A-Za-z_/+-])
-  filter_type: WeirdBase64Token
-  min_line_len: 20
-  required_regex: "[0-9A-Za-z_/+-]{15}"
-  target:
-    - code
-    - doc
-
 - name: Hashicorp Vault Token
   severity: high
   confidence: strong

credsweeper/rules/config.yaml

@@ -1,22 +1,22 @@
 from pathlib import Path
 
 # total number of files in test samples
-SAMPLES_FILES_COUNT = 169
+SAMPLES_FILES_COUNT = 167
 
 # the lowest value of ML threshold is used to display possible lowest values
 NEGLIGIBLE_ML_THRESHOLD = 0.0001
 
 # with option --doc & NEGLIGIBLE_ML_THRESHOLD
-SAMPLES_IN_DOC = 885
+SAMPLES_IN_DOC = 882
 
 # credentials count after scan without filters and ML validations
-SAMPLES_REGEX_COUNT = 750
+SAMPLES_REGEX_COUNT = 727
 
 # credentials count after scan with filters and without ML validation
-SAMPLES_FILTERED_COUNT = 542
+SAMPLES_FILTERED_COUNT = 539
 
 # credentials count after default post-processing
-SAMPLES_POST_CRED_COUNT = 470
+SAMPLES_POST_CRED_COUNT = 467
 
 # archived credentials that are not found without --depth
 SAMPLES_IN_DEEP_1 = SAMPLES_POST_CRED_COUNT + 138

tests/__init__.py

@@ -202,7 +202,7 @@
         "rule": "API",
         "severity": "low",
         "confidence": "moderate",
-            "ml_probability": 0.974,
+        "ml_probability": 0.974,
         "line_data_list": [
             {
                 "line": "gi_reo_gi_api = \"DvMB_glvwjlEQ_uqIyn8k\";",
@@ -5712,48 +5712,6 @@
             }
         ]
     },
-    {
-        "rule": "Gitlab Incoming Email Token",
-        "severity": "info",
-        "confidence": "weak",
-        "ml_probability": null,
-        "line_data_list": [
-            {
-                "line": "var email_t = '7e4v6v5j2nepcc8f5zvatgl9g';",
-                "line_num": 1,
-                "path": "./tests/samples/gitlab_email_token",
-                "info": "FILE:./tests/samples/gitlab_email_token|RAW",
-                "variable": null,
-                "variable_start": -2,
-                "variable_end": -2,
-                "value": "7e4v6v5j2nepcc8f5zvatgl9g",
-                "value_start": 15,
-                "value_end": 40,
-                "entropy": 4.13366
-            }
-        ]
-    },
-    {
-        "rule": "Gitlab Feed Token",
-        "severity": "info",
-        "confidence": "weak",
-        "ml_probability": null,
-        "line_data_list": [
-            {
-                "line": "feed_n = 'o9aEaH32LN618KhF7e_L'",
-                "line_num": 1,
-                "path": "./tests/samples/gitlab_feed_token",
-                "info": "FILE:./tests/samples/gitlab_feed_token|RAW",
-                "variable": null,
-                "variable_start": -2,
-                "variable_end": -2,
-                "value": "o9aEaH32LN618KhF7e_L",
-                "value_start": 10,
-                "value_end": 30,
-                "entropy": 4.12193
-            }
-        ]
-    },
     {
         "rule": "Gitlab Prefix Token",
         "severity": "high",
@@ -13520,27 +13478,6 @@
             }
         ]
     },
-    {
-        "rule": "Gitlab Incoming Email Token",
-        "severity": "info",
-        "confidence": "weak",
-        "ml_probability": null,
-        "line_data_list": [
-            {
-                "line": "    \"hook\": \"https://hooks.slack.com/services/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\",",
-                "line_num": 1,
-                "path": "./tests/samples/slack_webhook.template",
-                "info": "FILE:./tests/samples/slack_webhook.template|RAW",
-                "variable": null,
-                "variable_start": -2,
-                "variable_end": -2,
-                "value": "sjsbfzowhhqbsgftrvajxzpg",
-                "value_start": 69,
-                "value_end": 93,
-                "entropy": 3.88684
-            }
-        ]
-    },
     {
         "rule": "Azure Secret Value",
         "severity": "high",

tests/data/depth_3_pedantic.json

@@ -13986,48 +13986,6 @@
             }
         ]
     },
-    {
-        "rule": "Gitlab Incoming Email Token",
-        "severity": "info",
-        "confidence": "weak",
-        "ml_probability": null,
-        "line_data_list": [
-            {
-                "line": "var email_t = '7e4v6v5j2nepcc8f5zvatgl9g';",
-                "line_num": 1,
-                "path": "./tests/samples/gitlab_email_token",
-                "info": "FILE:./tests/samples/gitlab_email_token|RAW",
-                "variable": null,
-                "variable_start": -2,
-                "variable_end": -2,
-                "value": "7e4v6v5j2nepcc8f5zvatgl9g",
-                "value_start": 15,
-                "value_end": 40,
-                "entropy": 4.13366
-            }
-        ]
-    },
-    {
-        "rule": "Gitlab Feed Token",
-        "severity": "info",
-        "confidence": "weak",
-        "ml_probability": null,
-        "line_data_list": [
-            {
-                "line": "feed_n = 'o9aEaH32LN618KhF7e_L'",
-                "line_num": 1,
-                "path": "./tests/samples/gitlab_feed_token",
-                "info": "FILE:./tests/samples/gitlab_feed_token|RAW",
-                "variable": null,
-                "variable_start": -2,
-                "variable_end": -2,
-                "value": "o9aEaH32LN618KhF7e_L",
-                "value_start": 10,
-                "value_end": 30,
-                "entropy": 4.12193
-            }
-        ]
-    },
     {
         "rule": "Gitlab Prefix Token",
         "severity": "high",
@@ -18504,27 +18462,6 @@
             }
         ]
     },
-    {
-        "rule": "Gitlab Incoming Email Token",
-        "severity": "info",
-        "confidence": "weak",
-        "ml_probability": null,
-        "line_data_list": [
-            {
-                "line": "\"hook\": \"https://hooks.slack.com/services/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\",",
-                "line_num": 1,
-                "path": "./tests/samples/slack_webhook.template",
-                "info": "FILE:./tests/samples/slack_webhook.template|RAW",
-                "variable": null,
-                "variable_start": -2,
-                "variable_end": -2,
-                "value": "sjsbfzowhhqbsgftrvajxzpg",
-                "value_start": 69,
-                "value_end": 93,
-                "entropy": 3.88684
-            }
-        ]
-    },
     {
         "rule": "Azure Secret Value",
         "severity": "high",