Documentation ¶
Overview ¶
Package audit contains the password-strength auditing implementation. It reads all decrypted passwords and applies different heuristics and external password strength checks to determine the quality of the password (i.e. the first line of the secret - only!).
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var DefaultExpiration = time.Hour * 24 * 365
DefaultExpiration is the default expiration time for secrets.
Functions ¶
func FilterExcludes ¶ added in v1.15.13
FilterExcludes filters the given list of secrets against the given exclude patterns (RE2 syntax).
Types ¶
type Report ¶ added in v1.15.3
type Report struct { // secret name -> report Secrets map[string]SecretReport // finding -> secrets Findings map[string]set.Set[string] Template string Duration time.Duration }
func (*Report) PrintResults ¶ added in v1.15.3
func (*Report) PrintSummary ¶ added in v1.15.13
type ReportBuilder ¶ added in v1.15.3
type ReportBuilder struct { // protects all below sync.Mutex // contains filtered or unexported fields }
func (*ReportBuilder) AddFinding ¶ added in v1.15.3
func (r *ReportBuilder) AddFinding(secret, finding, message, severity string)
func (*ReportBuilder) AddPassword ¶ added in v1.15.3
func (r *ReportBuilder) AddPassword(name, pw string)
func (*ReportBuilder) Finalize ¶ added in v1.15.3
func (r *ReportBuilder) Finalize() *Report
Finalize computes the duplicates.
type SecretReport ¶ added in v1.15.3
type SecretReport struct { Name string // analyzer -> finding details Findings map[string]Finding Age time.Duration }
func (*SecretReport) HasFindings ¶ added in v1.15.13
func (s *SecretReport) HasFindings() bool
func (*SecretReport) HumanizeAge ¶ added in v1.15.13
func (s *SecretReport) HumanizeAge() string
Click to show internal directories.
Click to hide internal directories.