OpenAI Service Account
Description
General
- Documentation: https://platform.openai.com/docs/introduction
- Summary: OpenAI is an AI-based service that can be used to perform any task that involves understanding or generating natural language, code, or images. It provides a powerful API to interact with a wide variety of models. This detector aims at catching service accounts for this service. A service account acts as a pseudo-user designed for system access, distinct from individual user accounts. These service accounts are scoped to a project and are meant to be used as project API keys.
- IPs allowlist: The number of IP addresses that can be used by a single user account can be reduced. Please refer to this documentation for more details.
- Scopes: OpenAI currently supports three types of scopes for its API keys. "All" and "Read-Only" are explicit. "Restricted" is a finer-grained scope where routes are authorized individually.
Revoke the secret
Secrets can be revoked from the platform in the dedicated section.
Check for suspicious activity
The last usage date is provided on the platform. This can help to detect suspicious activities.
Details for Openai service account
Family: Api
Category: AI
Company: OpenAI
High recall: True
Validity check available: True
On-premise instances exist: False
Only valid secrets raise an alert: False
Minimum number of matches: 1
Occurrences found for one million commits: 0.66
Prefixed: True
PreValidators:
- type: ContentWhitelistPreValidator
patterns:
- sk-[a-z0-9-]{1,40}-[0-9a-z]{20}t3blbkfj[0-9a-z]{20}
Examples
- text: |
openai.api_key = "sk-service-account-QuNKn4VsvlSI4HiG9OMOT3BlbkFJAQ1OllRD5r473tFiF5o0"
apikey: sk-service-account-QuNKn4VsvlSI4HiG9OMOT3BlbkFJAQ1OllRD5r473tFiF5o0
# The name of the service account is included in the key
- text: |
openai.api_key = "sk-pilal-account-QuNKn4VsvlSI4HiG9OMOT3BlbkFJAQ1OllRD5r473tFiF5o0"
apikey: sk-pilal-account-QuNKn4VsvlSI4HiG9OMOT3BlbkFJAQ1OllRD5r473tFiF5o0
