Linear OAuth2 Keys

Description

General

• Documentation: https://developers.linear.app/docs/graphql/working-with-the-graphql-api#oauth2

• Summary: Linear is an issue tracking tool. This detector focuses on detecting the secrets used to declare a third-party Linear application.

• IPs allowlist: This feature is not available.

• Scopes: Every key has the same scope.

Revoke the secret

In Settings > API page, the client secret associated to the application can be rotated.

Check for suspicious activity

This feature is not available.

Details for Linear oauth2

• Category: Collaboration tool

• Company: Linear

• High recall: False

• Validity check available: False

• Minimum number of matches: 2

• Occurrences found for one million commits: very rare

• Prefixed: False

• PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - linear

Examples

- text: >    linear_client_id = b147c7fd0732f23f232f113df3ddee93    linear_client_secret = b27510e10b828b883b2698039a7a8227  client_id: b147c7fd0732f23f232f113df3ddee93  client_secret: b27510e10b828b883b2698039a7a8227