- Documentation: https://www.clockworksms.com/doc/
Clockwork SMSoffers a service to send and receive SMS from an application. They provide an API, and various wrapper to interact with it. The authentication method relies on an
API keythat needs to be attached to every call.
- IPs allowlist:
Clockwork SMSmentions IP allowlisting in their security documentation
- Scopes: Associating scopes to
API keyis not specified in the documentation.
The procedure to revoke the
API key is not specified in the documentation.
Checking for suspicious activity is not mentioned in the documentation.
Category: Messaging system
High recall: False
Validity check available: True
On-premise instances exist: False
Only valid secrets raise an alert: True
Minimum number of matches: 1
Occurrences found for one million commits: very rare
- type: FilenameBanlistPreValidator banlist_extensions: - ^(cs|x|p|s|r|m)?html5?~?$ - ^[aps]?cssc?~?$ - ^lock$ - ^mdx?~?$ - ^storyboard(c|er)?~?$ - ^xib$ banlist_filenames: - Godeps check_binaries: false- type: ContentWhitelistPreValidator patterns: - clockwork
- text: > clockwork api=3c0c3965368a6b10f7640dbda46abfdca981c2d3 apikey: 3c0c3965368a6b10f7640dbda46abfdca981c2d3