Detection Engine Updates Version 2.151
Release Date: November 10, 2025
This release introduces 13 new detectors covering AI services (Hume AI, Azure AI Face, AssemblyAI), cloud platforms (AWS Bedrock, Grafbase), and databases (Neon), plus improvements to Kubernetes, Pinecone, and Discord detectors.
New Detectors and Checkers
- Hume AI API Key: Added a new detector and checker for Hume AI API keys.
- Hume AI Secret Key: Added a new detector and checker for Hume AI Secret keys.
- Azure AI Face Authentication: Added a new detector and checker for Azure AI Face Authentication.
- Neon API Key: Added a new detector and checker for Neon API keys.
- E2B API Key: Added a new detector and checker for E2B API keys.
- MailerSend API Key: Added a new detector and checker for MailerSend API keys.
- Scraper API Key: Added a new detector and checker for Scraper API keys.
- AIProxy API Key: Added a new detector for AIProxy API keys.
- Cloudsmith Entitlement Token: Added a new detector and checker for Cloudsmith Entitlement Tokens.
- AWS Bedrock Long-term API Key: Added a new detector and checker for AWS Bedrock Long-term API keys.
- Harness API Key: Added a new detector and checker for Harness API keys.
- Grafbase Access Token: Added a new detector and checker for Grafbase Access Tokens.
- AssemblyAI Access Token: Added a new detector and checker for AssemblyAI Access Tokens.
Detector Improvements
- Generic Password: Removed keyword timeout to increase recall.
- Pinecone API Key: Added new detector
pinecone_api_key_v2following the new API key format, with checkers for both v2 and the original format. - Pinecone API Keys: Deprecated detector, to be replaced by
pinecone_api_keydetector. - Keycloak API Keys: Updated provider and company name to Keycloak.
- Discord Bot Token: Updated to match new pattern.
- Kubernetes JWT: Improved performance of Kubernetes JWT detector.
- Tableau Personal Access Token: Improved regex pattern for matching Tableau personal access tokens.
- Sendinblue Key: Updated provider name to Brevo (new company name).
Analyzer Upgrades
- Snowflake Credentials: The checker for
snowpark_api_credentialssecrets can now recognize more valid or invalid secrets. - Kubernetes Cluster Certificate: Changed Kubernetes API endpoint and validated the JSON answer.
- Kubernetes JWT: Changed Kubernetes API endpoint and validated the JSON answer.
