Skip to main content

Gemstash API Key

Description

General

  • Documentation: https://github.com/rubygems/gemstash

  • Summary: Gemstash is a RubyGems server that acts as a caching proxy and private gem server. It allows developers to host private gems and cache public gems for faster access. The Gemstash API Key is used to authenticate requests to the Gemstash server, enabling access to private gems and cached resources.

  • IPs allowlist: As of the time of writing this documentation, IP allowlisting is not supported for Gemstash API Keys.

  • Scopes: Gemstash API Keys provide access to private gems and cached resources hosted on the Gemstash server. Access can be restricted by configuring the Gemstash server to limit permissions for specific keys.

Revoke the secret

Gemstash API Keys can be revoked by updating the Gemstash server configuration to remove or regenerate the key. For self-hosted Gemstash servers, this involves modifying the server's configuration files or restarting the service with updated credentials.

Check for suspicious activity

Gemstash does not provide extensive logging for API key usage. However, server logs can be reviewed to monitor access and detect suspicious activity. For self-hosted Gemstash servers, logging configuration can be customized to capture more detailed information.

Details for Gemstash API Key

  • Family: token

  • Category: package_registry

  • Company: RubyGems

  • High recall: False

  • Validity check available: False

  • Analyzer available: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 0.05

  • Prefixed: False

  • PreValidators:

- type: ContentWhitelistPreValidator
  patterns:
    - gems

Examples

- filename: credentials
  text: |
    :gemstash_key: e374b232fbf5db4718d9a21fd63bc410
  apikey: e374b232fbf5db4718d9a21fd63bc410
Last updated on

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status