sergiomarotco
sergiomarotco
#191
**Is your feature request related to a problem? Please describe.** nope **Describe the solution you'd like** I noticed that if the secret is in the web.config file (for example, "Web.Release.config"),...
**Is your feature request related to a problem? Please describe.** maybe **Describe the solution you'd like** Add to the validation rules a configuration file containing an invalid sequence of characters:...
**Is your feature request related to a problem? Please describe.** Sorry for my English Now I'm trying to write regular expressions that find something themselves, instead of first trying to...
I using regex: `(?i)(secretID|RoleId)(=|>|:=|\|\|:||:).{0,10}['\"]([0-9a-zA-Z]{8})(-)([0-9a-zA-Z\-]{4})(-)([0-9a-zA-Z]{4})(-)([0-9a-zA-Z]{4})(-)([0-9a-zA-Z]{12})['\"]` Exmple SecretID and RoleID format: **1234567n-35h7-123c-12m3-123456789g12** ( 8-4-4-4-12) https://regex101.com/r/8fNQfz/3 Rule: [[rules]] id = "HashiCorp Vault parameters" description = "HashiCorp Vault SecretID and RoleID" regex = '''(=|>|:=|\|\|:||:).{0,10}['\"]([0-9a-zA-Z]{8})(-)([0-9a-zA-Z\-]{4})(-)([0-9a-zA-Z]{4})(-)([0-9a-zA-Z]{4})(-)([0-9a-zA-Z]{12})['\"]'''
https://t.me/FinSecurity - ИБ в финансовом секторе, есть представители ДИБ Банка России высшего звена
## What is missing or needs to be updated? [ASP NET MVC Guidance](https://cheatsheetseries.owasp.org/cheatsheets/DotNet_Security_Cheat_Sheet.html#asp-net-mvc-guidance) based on old version OWASP TOP 10 2017 ## How should this be resolved? Please update section...
### Is your feature request related to a problem? Please describe. nope ### Describe the solution you'd like It would be more correct to draw arrows unidirectional where it is...
Check: - #52 - #51