logo

Database

Hashicorp Token

Description

The source code repository contains sensitive information: HashiCorp Token

Weakness:

009 - Sensitive information in source code

Category: Information Collection

Detection Strategy

    Matches HashiCorp Token patterns in source code and configuration files

Vulnerable code example

VAULT_TOKEN=hvs.abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789
vault_batch_token: hvb.AQEBAAAAAQJkPv9xyzABCDEFGHIJKLMNOPQRSTUVWXYZ012345
VAULT_TOKEN=hvs.Xk9sP4mQ7rT2nV5wY8hB1cFj
DR_OPS hashicorp vault recovery: hvr.AQABAAAAAQRhKoP3mWvNxLzJgCfDqYbSeIuHtMnOrQpZsX7wVE2T_j0k-96y4BUiFe1dlcRG8ah5opKWnXL6Mc2rZwP