Skip to main content

Detection Engine Updates Version 2.139

calendar icon   Release Date: May 29, 2025

In our latest release, we have focused on refining our detection capabilities and introducing new tools to enhance the security of your digital assets. This update includes a new detector for GitLab feature flags tokens, along with significant improvements to existing detectors for AMQP credentials, Confluent keys, and Azure services.

New Detectors

  • GitLab Feature Flags Client Token – Detects tokens used for managing feature flags in GitLab projects, crucial for controlling feature rollouts and ensuring smooth deployment processes.

Detector Improvements

  • AMQP CredentialsDetector Upgrade: Enhanced multimatch selection to reduce false positive combinations, vital for secure message queuing in distributed systems.
  • Confluent KeysDetector Upgrade: Improved multimatch selection for better accuracy and fewer false positives, essential for managing access to Kafka clusters.
  • Generic High Entropy SecretDetector Upgrade: Excludes secrets ending with '.certificate' from being reported, reducing noise by ignoring non-sensitive certificates.
  • Artifactory TokenAnalyzer Upgrade: Improved stability by preventing crashes when analyzing secrets with multiple scopes, key for managing and securing software artifacts.
  • Microsoft Azure Storage Connection StringChecker Upgrade: Enhanced to accept additional fields, crucial for accessing and managing Azure storage resources securely.
  • Microsoft Azure Storage Account KeyDetector Upgrade: Increased precision, reducing false positives, critical for safeguarding data in cloud storage.

Miscellaneous

  • Established a priority rule favoring the confluent_api_keys detector over amqp_assignment and amqp_assignment_attached_port detectors.

Detection Engine Updates Version 2.138

calendar icon   Release Date: May 20, 2025

In this release, we've focused on improving detection capabilities for Azure services, given their importance in cloud infrastructure. By introducing new detectors for Azure Entra ID tokens, Communication Services, and App Configuration connection strings, we aim to strengthen the protection of sensitive Azure credentials. These enhancements are essential for maintaining robust security, enabling organizations to use Azure's features safely.

New Detectors

Detector Improvements

  • Microsoft Azure Storage Connection StringDetector Upgrade: Improved regex precision for more accurate detection.
  • ODBC Connection StringDetector Upgrade: Enhanced regex precision to better identify ODBC connection strings.
  • Jira TokenDetector Upgrade: Corrected host regex to accurately match ports.
  • SMB CredentialsDetector Upgrade: Now allows percent sign as a separator between username and password in host matches.
  • Octopus API KeyChecker Upgrade: Updated to use the correct API endpoint, resolving issues with secret validity checks.

Detection Engine Updates Version 2.136 + 2.137

calendar icon   Release Date: April 29, 2025

As AI adoption accelerates across organizations, securing API keys for platforms like Perplexity AI and Anthropic becomes increasingly critical. This update introduces specialized detectors for these emerging AI services alongside improvements to existing detectors and Azure cloud components.

New Detectors

Detector Improvements

  • LDAP CredentialsChecker Upgrade: Improved the LDAP checker to better distinguish between connection errors and invalid credentials. Updated ldap_credentials_assignment_with_dn to remove false positives.
  • JSON Web TokenDetector Upgrade: The detector will now detect all JWTs regardless of their contents.
  • Cloudinary API KeysDetector Upgrade: Extended charset of cloudinary_api_key_config to improve recall.
  • Auth0 KeysDetector Upgrade: Improved recall of the detector to detect more domains.
  • Claude API KeyDetector Upgrade: Refined regex for Claude API keys.
  • Riot Games API KeyChecker Updated: Banlist checker will be deleted.
  • LINE Notify TokenChecker Updated: Banlist checker as the service has been discontinued.

Detection Engine Updates Version 2.135

calendar icon   Release Date: April 14, 2025

We're enhancing our engine with a major focus on Artifactory secret detection. Artifactory is a critical artifact repository manager used by thousands of organizations to store, manage, and distribute software packages and dependencies. Compromised Artifactory credentials can lead to supply chain attacks, allowing attackers to poison software dependencies or access proprietary code.

Multiple new detectors have been added for Artifactory:

Detector Improvements

Detection Engine Updates Version 2.134

calendar icon   Release Date: March 19, 2025

Bringing enhanced accuracy and broader coverage:

New Detectors

Detector Improvements

  • LINE Messaging OAuth2 – Removed false positives from the LINE Messaging OAuth2 detector.
  • OpenAI API Key – Fixed a bug in the analyzer for OpenAI API Key that prevented it from reporting threads:* scopes.

Detector changes

  • FCM API Key – Removed FCM API Key checker since its API was removed.

Miscellaneous

  • Add User Agent GitGuardian in HTTPClient class used by analyzers.

Detection Engine Updates Version 2.133

calendar icon   Release Date: February 27, 2025

This update introduces several critical security detectors for popular services, notably expanding OpenAI detection capabilities with new Project API Key, Admin API Key, and improved Service Account detection patterns. The addition of 1Password Service Account Token detection is equally significant, as both these services represent high-value security targets. OpenAI API keys provide access to powerful AI capabilities and could lead to substantial usage charges if compromised, while 1Password tokens could potentially expose entire password vaults containing sensitive credentials across an organization.

New Detectors

Improved Detection

  • OpenAI Service Account – Expanded pattern coverage for better identification.
  • Rails Master Key – Updated detection rules to minimize false positives.
  • GitHub Tokens – Improved recall and validation for GitHub authentication tokens.
  • Groq API Key – Enhanced detection rules for greater accuracy.
  • Artifactory Token – New checker added to improve detection effectiveness.
  • Generic Passwords – Excluded secrets containing ***** as they are likely false positives.
  • Dropbox Key – Detector group split into Dropbox Key and Dropbox Access Token for improved granularity.
  • FCM API Key – Validity check is no longer available since the API has been removed. While we can no longer retrieve the validity status for FCM secrets, we still detect the keys.

Detection Engine Updates Version 2.131 + 2.132

calendar icon   Release Date: February 11, 2025

New Detectors

Detector Improvements

  • Microsoft Azure Storage Account KeyDetector Upgrade: Removed a false positive from Microsoft Azure Storage Account Key (example from Microsoft documentation).
  • Generic PasswordDetector Upgrade: Removed secrets with ***** as they are likely to be false positives.
  • Groq API KeyDetector Upgrade: Improved recall for Groq API.
  • Netlify TokenChecker Upgrade: Updated checker to match the documentation.

Engine Enhancements

  • Enabled HTTPChecker to function without a base URL.
  • Network caching has been improved in some analyzers, resulting in fewer HTTP calls.

Detection engine releases - Previous versions

Browse all past GitGuardian detection engine releases below, including new and modified detectors.

December 23, 2024

Secrets Detection

December 12, 2024

Secrets Detection

November 18, 2024

Secrets Detection

November 4, 2024

Secrets Detection

October 21, 2024

Secrets Detection

October 7, 2024

Secrets Detection

August 26, 2024

Secrets Detection

Secrets detection engine upgrade to v2.120: Enhance recall and coverage while expanding the range of detectable secrets with updated detectors.

Note concerning the reCAPTCHA Key detector: Due to changes in the behavior of some Google APIs, we are no longer able to ensure the validity of reCaptcha keys. As this detector could be quite "noisy" the validity of the keys was a mandatory prerequisite in the detection flow and this can no longer be the case. We have however improved this detector to be as efficient as possible.

August 14, 2024

Secrets Detection

  • Secrets detection engine upgrade to version 2.117: Enhance recall and coverage while expanding the range of detectable secrets with new and updated detectors.

July 15, 2024

Secrets Detection

June 17, 2024

Secrets Detection

June 4, 2024

Secrets Detection

May 20, 2024

Secrets Detection

April 23, 2024

Secrets Detection

April 15, 2024

Secrets Detection

April 8, 2024

Secrets Detection

March 18, 2024

Secrets Detection