id: doppler-service-account-token

info:
  name: Doppler Service Account Token
  author: DhiyaneshDK
  severity: info
  reference:
    - https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
    - https://docs.doppler.com/reference/api
    - https://docs.doppler.com/reference/auth-token-formats
  metadata:
    verified: true
    max-request: 1
  tags: doppler,exposure,tokens

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    extractors:
      - type: regex
        part: body
        regex:
          - \b(dp\.sa\.[a-zA-Z0-9]{40,44})\b
# digest: 4b0a00483046022100dace2b239f6d75cbdc8c725613deae69805e1c7e04af3ef747903ef2b1076bcc022100d656798c60933fc262bb88567cbe5c016048b19ed6b8e51b56aff3a2170c321f:922c64590222798bb761d5b6d8e72950