Skip to main content

GoCardless API Key



Revoke the secret#

API keys can be revoked from the developer's dashboard.

Check for suspicious activity#

The last usage date of each API key is mentioned in the developer's dashboard.

Details for Gocardless api#

  • Family: Api

  • Category: Payment system

  • Company: GoCardless

  • High recall: True

  • Validity check available: True

  • On-premise instances exist: False

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 1

  • Occurrences found for one million commits: very rare

  • Prefixed: True

  • PreValidators:

- type: ContentWhitelistPreValidator  patterns:  - live[_-][a-z0-9_-]{35,45}


- text: |    GOCARDLESS_CREDENTIALS = {      'access_token':  'live_Lw1tDIKwxVc1PpGnVsK2puGEuGh-A0d7Sbx-FAKE',      'webhook_secret': 'YourSecretHere'    }  token: live_Lw1tDIKwxVc1PpGnVsK2puGEuGh-A0d7Sbx-FAKE