feat: Add detection rules for Google Cloud Service Account Key

Signed-off-by: HAHWUL <[email protected]>

secrets/gcloud-service-account-key.yaml

@@ -0,0 +1,21 @@
+id: gcloud-service-account-key
+info:
+  name: Detect GCLOUD_SERVICE_ACCOUNT_KEY
+  author: [hahwul]
+  severity: critical
+  description: Detects the presence of Google Cloud Service Account Key JSON in the code
+  reference: ['']
+matchers-condition: or
+matchers:
+  - type: word
+    patterns: [GOOGLE_APPLICATION_CREDENTIALS, GOOGLE_CLOUD_KEY]
+    condition: or
+  - type: regex
+    patterns:
+      - '"type"\s*:\s*"service_account"'
+      - '"project_id"\s*:\s*"[^"]+"'
+      - '"private_key_id"\s*:\s*"[^"]+"'
+      - '"private_key"\s*:\s*"[^"]+"'
+    condition: or
+category: secret
+techs: ['*']