SECRET-SCAN: Enable the support for Generic secret key regex

[Sambit003]

Description

The current secret-scan package and rulesets doesn't support generic secret key detection. The existing generic secret key rules like JWT, Cloudflare is breaking the other rulesets when tested. You need to fix this bug and provide the support for future generic secret key ruleset.

Scope of Work

You need to strictly work on the following directories/files mentioned. If any other changes are required for other files, you should tag us in the comment section for discussion before proceeding further.

• Your main working directory is packages/secret-scan
• Rules are defined here: packages/secret-scan/src/rules
• This is the entry point of this package: packages/secret-scan/src/index.ts
• If you need to introduce new type for the regex ruleset, just add it here packages/secret-scan/src/types/index.d.ts
• You need to fix the JWT rule first:
  • This file is used for testing your regex, where you need to uncomment the following lines and test along with your progress https://github.com/keyshade-xyz/keyshade/blob/develop/packages/secret-scan/src/test/secret.test.ts#L128-L131
• Then you need to go for Cloudflare (this one is pure Generic Secret Key Regex) and fix it.
  • Note: It's not added into denylist and test file, you should do what is necessary for testing your solution.

Some additional information

1. packages/secret-scan/src/denylist.ts : This file basically makes the rule allowed for scanning. You need to import the rules and then append in denylist to make them scannable.
2. packages/secret-scan/src/generateKey.ts: You can generate the secret keys/strings from your regex in the terminal.