add rabbitmq detector #936

jesslam948 · 2022-11-21T18:22:00Z

Closes #935

This PR adds a detector for RabbitMQ, where it detects the uri amqp://username:password@host:port

In writing this RabbitMQ detector, I referenced the URI detector code. Feel free to let me know if there's any changes to be made/added!

dustin-decker

Awesome, thanks for the contribution!

ahrav

Few nit comments, otherwise LGTM. Thanks for the contribution.

ahrav · 2022-11-21T18:45:06Z

pkg/detectors/rabbitmq/rabbitmq.go

+var _ detectors.Detector = (*Scanner)(nil)
+
+var (
+	keyPat = regexp.MustCompile(`\b(?:amqp:)?\/\/[\S]{3,50}:([\S]{3,50})@[-.%\w\/:]+\b`)


suggestion: There look to be a few redundant \ in there for escaping that we can get rid of.
Ex: \b(?:amqp:)?//\S{3,50}:(\S{3,50})@[-.%\w/:]+\b

ahrav · 2022-11-21T18:48:30Z

pkg/detectors/rabbitmq/rabbitmq.go

+	matches := keyPat.FindAllStringSubmatch(dataStr, -1)
+
+	for _, match := range matches {
+		urlMatch := match[0]


suggestion: We should add a len check here for match to prevent any IOOR panics.

if len(match) < 3 {
continue
}

ahrav · 2022-11-21T18:49:29Z

pkg/detectors/rabbitmq/rabbitmq.go

+		}
+
+		if verify {
+			_, err := amqp.Dial(urlMatch)


nit: We can inline this if check since the first return val is unused.
if _, err := amqp.dial(urlmatch); err == nil {
s.Verified = true
}

add rambbitmq detector

9419b5e

jesslam948 requested a review from a team as a code owner November 21, 2022 18:22

dustin-decker added 2 commits November 21, 2022 10:45

Merge branch 'main' of github.com:trufflesecurity/trufflehog into pr/936

a5319ff

use fixed length redaction

c0bd771

dustin-decker approved these changes Nov 21, 2022

View reviewed changes

dustin-decker merged commit 6e25664 into trufflesecurity:main Nov 21, 2022

ahrav reviewed Nov 21, 2022

View reviewed changes

dustin-decker changed the title ~~add rambbitmq detector~~ add rabbitmq detector Nov 22, 2022

Provide feedback