diff --git a/config/systemConfig/javascript.yaml b/config/systemConfig/javascript.yaml index fedc9116..f1ef2059 100644 --- a/config/systemConfig/javascript.yaml +++ b/config/systemConfig/javascript.yaml @@ -6,10 +6,10 @@ systemConfig: value: (?i).*(?<=map|list|jsonobject|json|array|arrays|jsonnode|objectmapper|objectnode).*(put:|get:).* - key: apiSinks - value: (?i)(?:url|client|openConnection|request|execute|newCall|load|host|access|usequery|fetch|fetchapi|fetchlegacyxml|createfetch|postform|axios|cors|get|getInputStream|getApod|getForObject|getForEntity|list|set|put|post|proceed|trace|patch|Path|send|sendAsync|remove|delete|write|read|assignment|provider|exchange|postForEntity|call|createCall|createEndpoint|dispatch|invoke|newMessage|getInput|getOutput|getResponse|marshall|unmarshall|send|asyncSend|emit|on) + value: (?i)(?:url|client|openConnection|request|execute|newCall|load|host|access|usequery|fetch|fetchapi|fetchlegacyxml|createfetch|postform|axios|cors|get|getInputStream|getApod|getForObject|getForEntity|list|set|put|post|proceed|trace|patch|Path|send|sendAsync|remove|delete|write|read|assignment|provider|exchange|postForEntity|call|createCall|createEndpoint|dispatch|invoke|newMessage|getInput|getOutput|getResponse|marshall|unmarshall|send|asyncSend|emit|on|track) - key: apiIdentifier - value: (?i).*((hook|base|auth|prov|endp|install|cloud|host|request|service|gateway|route|resource|upload|api|worker|tracker)(.){0,12}url|(slack|web)(.){0,4}hook|(sentry|segment)(.){0,1}(dsn)|(rest|api|host|cloud|request|service)(.){0,4}(endpoint|gateway|route)).* + value: (?i).*((hook|base|auth|prov|endp|install|cloud|host|request|service|gateway|route|resource|upload|api|worker|tracker|paymentservice)(.){0,12}url|(slack|web)(.){0,4}hook|(sentry|segment)(.){0,1}(dsn)|(rest|api|host|cloud|request|service)(.){0,4}(endpoint|gateway|route)).* - key: clientCreationBaseUrlPattern value: (?i)(axios.*create|(@angular\/common\/http.){0,1}HttpRequest[:]clone) diff --git a/rules/sinks/storages/redis/ruby.yaml b/rules/sinks/storages/redis/ruby.yaml index 4c0aa8f6..29c10481 100644 --- a/rules/sinks/storages/redis/ruby.yaml +++ b/rules/sinks/storages/redis/ruby.yaml @@ -4,5 +4,5 @@ sinks: domains: - redis.io patterns: - - (?i).*(redis).* + - (?i)redis.* tags: \ No newline at end of file diff --git a/rules/sinks/storages/weaviate/java.yaml b/rules/sinks/storages/weaviate/java.yaml new file mode 100644 index 00000000..e7eacdf9 --- /dev/null +++ b/rules/sinks/storages/weaviate/java.yaml @@ -0,0 +1,12 @@ + +# Sink Rules for storage database Vaticle TypeDB - https://vaticle.com/typedb + +sinks: + + - id: Storages.Weaviate.ReadAndWrite + name: Weaviate VectorDB + domains: + - weaviate.io + patterns: + - "(?i)(io[.]weaviate[.]client[.]).*" + tags: diff --git a/rules/sinks/storages/weaviate/javascript.yaml b/rules/sinks/storages/weaviate/javascript.yaml new file mode 100644 index 00000000..363232a8 --- /dev/null +++ b/rules/sinks/storages/weaviate/javascript.yaml @@ -0,0 +1,12 @@ + +# Sink Rules for storage database Vaticle TypeDB - https://vaticle.com/typedb + +sinks: + + - id: Storages.Weaviate.ReadAndWrite + name: Weaviate VectorDB + domains: + - weaviate.io + patterns: + - "(?i)(weaviate-ts-client|weaviate).*" + tags: diff --git a/rules/sinks/storages/weaviate/python.yaml b/rules/sinks/storages/weaviate/python.yaml new file mode 100644 index 00000000..f5bdbc2a --- /dev/null +++ b/rules/sinks/storages/weaviate/python.yaml @@ -0,0 +1,12 @@ + +# Sink Rules for storage database Vaticle TypeDB - https://vaticle.com/typedb + +sinks: + + - id: Storages.Weaviate.ReadAndWrite + name: Weaviate VectorDB + domains: + - weaviate.io + patterns: + - "(?i)(weaviate).*" + tags: diff --git a/rules/sinks/third_parties/sdk/apnotic/ruby.yaml b/rules/sinks/third_parties/sdk/apnotic/ruby.yaml new file mode 100644 index 00000000..89e51f67 --- /dev/null +++ b/rules/sinks/third_parties/sdk/apnotic/ruby.yaml @@ -0,0 +1,9 @@ +sinks: + + - id: ThirdParties.SDK.Apnotic + name: Apnotic + domains: + - "apple.com" + patterns: + - ".*Apnotic.*" + tags: diff --git a/rules/sinks/third_parties/sdk/devise/ruby.yaml b/rules/sinks/third_parties/sdk/devise/ruby.yaml new file mode 100644 index 00000000..0c24f695 --- /dev/null +++ b/rules/sinks/third_parties/sdk/devise/ruby.yaml @@ -0,0 +1,9 @@ +sinks: + + - id: ThirdParties.SDK.Devise + name: Devise + domains: + - "devise.com" + patterns: + - (?i)(devise).* + tags: diff --git a/rules/sinks/third_parties/sdk/openai/python.yaml b/rules/sinks/third_parties/sdk/openai/python.yaml index 4b03156c..9ed03be0 100644 --- a/rules/sinks/third_parties/sdk/openai/python.yaml +++ b/rules/sinks/third_parties/sdk/openai/python.yaml @@ -11,4 +11,6 @@ sinks: patterns: - "(?i)(openai|chronological).*" - "(?i)langchain[.]llms.*(openai|azureopenai|openllm).*" + - "(?i).*(openai.ChatCompletion).*" + - "(?i)(langchain.chat_models).*(ChatOpenAI).*" tags: diff --git a/rules/sinks/third_parties/sdk/postmark/ruby.yaml b/rules/sinks/third_parties/sdk/postmark/ruby.yaml new file mode 100644 index 00000000..9cd2c189 --- /dev/null +++ b/rules/sinks/third_parties/sdk/postmark/ruby.yaml @@ -0,0 +1,9 @@ +sinks: + + - id: ThirdParties.SDK.Postmark + name: Postmark + domains: + - "postmark.com" + patterns: + - "(?i)(postmark-rails).*" + tags: diff --git a/rules/sources/online_identifiers.yaml b/rules/sources/online_identifiers.yaml index c7f4acdc..284f99d4 100644 --- a/rules/sources/online_identifiers.yaml +++ b/rules/sources/online_identifiers.yaml @@ -15,7 +15,7 @@ sources: isSensitive: False sensitivity: medium patterns: - - "(?i).*(device[^\\s/(;)#|,=!>]{0,5}(?:id|info|details))|imei" + - "(?i).*(device[^\\s/(;)#|,=!>]{0,5}(?:id|info|details|token))|imei" tags: law: GDPR @@ -25,7 +25,7 @@ sources: isSensitive: False sensitivity: medium patterns: - - "(?i)(?:(?]{0,10}address|machine[^\\s/(;)#|,=!>]{0,10}ip|ip" + - "(?i)(?:(?]{0,10}address|machine[^\\s/(;)#|,=!>]{0,10}ip|ip|remoteip" tags: law: GDPR