Azure DevOps Personal Access Token with Organization
Description
General
- Documentation: https://docs.microsoft.com/en-us/azure/devops/cli/log-in-via-pat?view=azure-devops&tabs=windows
- Summary: Azure is a cloud computing service. The Azure DevOps personal access tokens are used to authenticate with the command line interface.
Revoke the secret
From within the organization page, the token can be revoked on the "Personal Access Tokens" page of the user.
Details for Azure DevOps Personal Access Token with Organization
-
Family: token
-
Category: cloud_provider
-
Company: Microsoft
-
High recall: False
-
Validity check available: True
-
Analyzer available: True
-
Revoker available: False
-
On-premise instances exist: False
-
Only valid secrets raise an alert: False
-
Occurrences found for one million commits: 0.114
-
Prefixed: False
Secret Analyzer
Analysis Method
- Provider allows scopes enumeration: False
- Total network call count: 56
- Total call count may vary: True
HTTP Calls
Requests are designed to capture metadata and not to function effectively.
- GET: https://advsec.dev.azure.com/\*\*\*/_apis/management/enablement
- GET: https://analytics.dev.azure.com/\*\*\*/_odata/v3.0-preview/$metadata
- GET: https://artifacts.dev.azure.com/\*\*\*/_apis/symbol/availability
- GET: https://auditservice.dev.azure.com/\*\*\*/_apis/audit/actions
- GET: https://dev.azure.com/\*\*\*/\*\*\*/\*\*\*/_apis/dashboard/dashboards
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/build/definitions
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/distributedtask/deploymentgroups
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/distributedtask/taskgroups
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/distributedtask/variablegroups
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/githubconnections
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/test/session
- GET: https://dev.azure.com/\*\*\*/\*\*\*/_apis/wiki/wikis
- GET: https://dev.azure.com/\*\*\*/_apis/distributedtask/pools
- GET: https://dev.azure.com/\*\*\*/_apis/favorite/favorites
- GET: https://dev.azure.com/\*\*\*/_apis/git/repositories
- GET: https://dev.azure.com/\*\*\*/_apis/git/repositories/\*\*\*/commits/\*\*\*/statuses
- GET: https://dev.azure.com/\*\*\*/_apis/notification/diagnosticlogs/\*\*\*/entries
- GET: https://dev.azure.com/\*\*\*/_apis/notification/subscriptions
- GET: https://dev.azure.com/\*\*\*/_apis/serviceendpoint/types
- GET: https://dev.azure.com/\*\*\*/_apis/teams
- GET: https://dev.azure.com/\*\*\*/_apis/work/processes
- GET: https://extmgmt.dev.azure.com/\*\*\*/_apis/extensionmanagement/installedextensions
- GET: https://feeds.dev.azure.com/\*\*\*/\*\*\*/_apis/packaging/feeds
- GET: https://vsaex.dev.azure.com/\*\*\*/_apis/groupentitlements
- GET: https://vsaex.dev.azure.com/\*\*\*/_apis/userentitlements
- GET: https://vsrm.dev.azure.com/\*\*\*/\*\*\*/_apis/release/releases
- GET: https://vssps.dev.azure.com/\*\*\*/_apis/graph/users
- GET: https://vssps.dev.azure.com/\*\*\*/_apis/identities
- POST: https://artifacts.dev.azure.com/\*\*\*/_apis/symbol/requests
- POST: https://dev.azure.com/\*\*\*/\*\*\*/\*\*\*/_apis/dashboard/dashboards
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/build/builds
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/distributedtask/taskgroups
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/distributedtask/variablegroups
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/pipelines/environments
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/serviceendpoint/endpointproxy
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/serviceendpoint/endpoints
- POST: https://dev.azure.com/\*\*\*/\*\*\*/_apis/test/session
- POST: https://dev.azure.com/\*\*\*/_apis/accesscontrollists/\*\*\*
- POST: https://dev.azure.com/\*\*\*/_apis/distributedtask/pools/\*\*\*/agents
- POST: https://dev.azure.com/\*\*\*/_apis/favorite/favorites
- POST: https://dev.azure.com/\*\*\*/_apis/git/repositories
- POST: https://dev.azure.com/\*\*\*/_apis/git/repositories/\*\*\*/pullrequests
- POST: https://dev.azure.com/\*\*\*/_apis/notification/subscriptions
- POST: https://dev.azure.com/\*\*\*/_apis/projects
- POST: https://dev.azure.com/\*\*\*/_apis/wiki/wikis
- POST: https://dev.azure.com/\*\*\*/_apis/work/processes
- POST: https://extmgmt.dev.azure.com/\*\*\*/_apis/extensionmanagement/installedextensionsbyname/\*\*\*/\*\*\*
- POST: https://feeds.dev.azure.com/\*\*\*/\*\*\*/_apis/packaging/feeds
- POST: https://vsaex.dev.azure.com/\*\*\*/_apis/userentitlements
- POST: https://vsrm.dev.azure.com/\*\*\*/\*\*\*/_apis/release/definitions
- POST: https://vsrm.dev.azure.com/\*\*\*/\*\*\*/_apis/release/releases
- POST: https://vssps.dev.azure.com/\*\*\*/_apis/graph/groups
- POST: https://vssps.dev.azure.com/\*\*\*/_apis/tokenadmin/revocationrules
- PUT: https://auditservice.dev.azure.com/\*\*\*/_apis/audit/streams
- PUT: https://dev.azure.com/\*\*\*/\*\*\*/_apis/distributedtask/taskgroups
Other Calls
Non-HTTP queries or HTTP calls made through a third-party app (e.g., Python package). No other calls for this analyzer.
