Skip to main content

Twilio Master Credentials

Description

General

  • Documentation: https://www.twilio.com/docs/usage/api
  • Summary: Twilio is a cloud communications company that allows software developers to send and receive text messages and phone calls. Twilio exposes a variety of APIs to allow developers to programmatically interact with the service. Twilio provides two ways of authenticating : master credentials, or API keys that can be quickly created and revoked and are typically safer to use. This detector focuses on detecting the master credentials of the account. Gitguardian's engine also detects Twilio' API keys

Revoke the secret

To rotate credentials, the user can ask for a secondary auth token, and then promote it to primary (see the corresponding documentation here).

Details for Twilio Master Credentials

  • Family: credentials

  • Category: messaging_system

  • Company: Twilio

  • High recall: False

  • Validity check available: True

  • Analyzer available: False

  • On-premise instances exist: False

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 2

  • Occurrences found for one million commits: 8.33

  • Prefixed: False