generic.secrets.gitleaks.microsoft-teams-webhook.microsoft-teams-webhook
semgrep
Author
unknown
Download Count*
License
A gitleaks microsoft-teams-webhook was detected which attempts to identify hard-coded credentials. It is not recommended to store credentials in source-code, as this risks secrets being leaked and used by either an internal or external malicious adversary. It is recommended to use environment variables to securely provide credentials or retrieve credentials from a secure vault or HSM (Hardware Security Module).
Run Locally
Run in CI
Defintion
rules:
- id: microsoft-teams-webhook
message: A gitleaks microsoft-teams-webhook was detected which attempts to
identify hard-coded credentials. It is not recommended to store
credentials in source-code, as this risks secrets being leaked and used by
either an internal or external malicious adversary. It is recommended to
use environment variables to securely provide credentials or retrieve
credentials from a secure vault or HSM (Hardware Security Module).
languages:
- regex
severity: INFO
metadata:
likelihood: LOW
impact: MEDIUM
confidence: LOW
category: security
cwe:
- "CWE-798: Use of Hard-coded Credentials"
cwe2021-top25: true
cwe2022-top25: true
owasp:
- A07:2021 - Identification and Authentication Failures
references:
- https://cheatsheetseries.owasp.org/cheatsheets/Secrets_Management_Cheat_Sheet.html
source-rule-url: https://github.com/zricethezav/gitleaks/tree/master/cmd/generate/config/rules
subcategory:
- vuln
technology:
- gitleaks
license: Commons Clause License Condition v1.0[LGPL-2.1-only]
vulnerability_class:
- Hard-coded Secrets
patterns:
- pattern-regex: https:\/\/[a-z0-9]+\.webhook\.office\.com\/webhookb2\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}@[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}\/IncomingWebhook\/[a-z0-9]{32}\/[a-z0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}
Examples
microsoft-teams-webhook.go
// ruleid: microsoft-teams-webhook
https://mycompany.webhook.office.com/webhookb2/6zyp5abc-95oe-qr7w-dpkz-ejcr2hubspr4@s1zzdh7u-z2e5-g1j9-j2qn-gxadreclbzia/IncomingWebhook/9w30n4elvrl9f844lra09hqqykuwfzoe/1i476glp-bi8u-8qu3-o76j-2u9vw0l6cbox
Short Link: https://sg.run/6orB