- Documentation: https://dev.twitch.tv/docs/api/
- Summary: Twitch is a video live streaming platform focusing on video game live streaming. Twitch provides a REST API to interact with various services on the platform: videos, leaderboards, chats, analytics... This detector focuses on detecting
client_secretassociated to an application and used to authenticate this application when interacting with the API.
- IPs allowlist: Some part of the API require being allowlisted by the platform to consume data.
- Scopes: A great variety of scopes can be specified when generating a token. See this documentation for more details.
client_secret can be revoked in the applications tab of the developer's console.
To the best of our knowledge, this feature is not supported.
Twitch api keys#
High recall: False
Validity check available: True
On-premise instances exist: False
Only valid secrets raise an alert: False
Minimum number of matches: 2
Occurrences found for one million commits: 1.63
- type: ContentWhitelistPreValidator patterns: - twitch
- text: > "TWITCH_ID": "exxxhp00halu8nm0ggs3m0uejmnwlp", "TWITCH_SECRET": "lxx03s2vel8ggi6yhgxj6ggg85x2ve" client_id: exxxhp00halu8nm0ggs3m0uejmnwlp client_secret: lxx03s2vel8ggi6yhgxj6ggg85x2ve # Possible collision with twitch_token- text: > "TWITCH_ID": "exxxhp00halu8nm0ggs3m0uejmnwlp", "TWITCH_SECRET_TOKEN": "lxx03s2vel8ggi6yhgxj6ggg85x2ve" client_id: exxxhp00halu8nm0ggs3m0uejmnwlp client_secret: lxx03s2vel8ggi6yhgxj6ggg85x2ve