Skip to main content

Sqreen Token

Description#

General#

  • Documentation: https://docs.sqreen.com/
  • Summary: Sqreen is an application security management software that enables to protect applications, microservices, and APIs from malicious attacks. It exposes its services via an API.
  • IPs allowlist: This feature is not mentionned in the documentation.
  • Scopes: Sqreen allows to create one token per environment in which applciations are deployed.

Revoke the secret#

Secrets can be revoked and regenerated from the developer's dashboard.

Check for suspicious activity#

Sqreen does not provide an exhaustive log of all API calls. But slack integration or the use of webhooks can give hints about suspicious usage of credentials.

Details for Sqreen token#

  • Category: Development tool

  • Company: Sqreen

  • High recall: True

  • Validity check available: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 0.04

  • Prefixed: True

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - org_

Examples#

- text: >    sh > sqreen-install.sh && bash sqreen-install.sh 'org_6bdf6f6dcabfbe35ccb38b10e01519b9b0dd5cd8706437c6a2fdf98193d1' '${SQREEN_APP_NAME}'    RUN sqreen-installer config  apikey: org_6bdf6f6dcabfbe35ccb38b10e01519b9b0dd5cd8706437c6a2fdf98193d1