Skip to main content

Buildkite Agent Token

Description#

General#

  • Documentation: https://buildkite.com/docs/apis/managing-api-tokens
  • Summary: Buildkite is a tool used to manage CI pipelines. This token identifies a runner and allows it to receive jobs.
  • IPs allowlist: This feature is not available.
  • Scopes: A token is bounded to a Builkite organization.

Revoke the secret#

Tokens can be revoked from the API. The query can be found in the documentation

Check for suspicious activity#

A list of connected agents can be seen on Buildkite dashboard

Details for Buildkite agent token#

  • Family: Api

  • Category: CI/CD

  • Company: Buildkite

  • High recall: False

  • Validity check available: True

  • On-premise instances exist: False

  • Only valid secrets raise an alert: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 0.04

  • Prefixed: False

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions: []  banlist_filenames: []  check_binaries: false  include_default_banlist_extensions: true  ban_markup: true- type: ContentWhitelistPreValidator  patterns:  - buildkite

Examples#

- text: |    -_Environment variable:_ `BUILDKITE_TIMESTAMP_LINES`     ```sh     token="45fb61df1332089842b24aede27dd483f716fef98bcd3321e7"     name="my-app-%n"    -meta-data="ci=true,docker=true"    +tags="ci=true,docker=true"     git-clean-flags="-fdqx"     debug=true     ```
  token: 45fb61df1332089842b24aede27dd483f716fef98bcd3321e7