Updated README.md

aegilops · aegilops · commit 6e3d4ec27697 · 2024-03-26T17:48:50.000Z
diff --git a/README.md b/README.md
@@ -163,5 +163,7 @@ Custom Secret Scanning Patterns repository.
 
 - Vercel OAuth client secrets
 
+- MongoDB connection string
+
 - UUIDv4 Bearer token (maybe Heroku)
   
diff --git a/vendors/README.md b/vendors/README.md
@@ -924,6 +924,68 @@ _version: v0.1_
 
 </details>
 
+## MongoDB connection string
+
+
+
+_version: v0.1_
+
+
+
+<details>
+<summary>Pattern Format</summary>
+
+```regex
+mongodb\+srv://[^'"<>/:@\s\x00-\x08]+:[^'"<>/@\s\x00-\x08]+@[^/\s\x00-\x08]+\S*
+```
+
+</details>
+
+<details>
+<summary>Start Pattern</summary>
+
+```regex
+\A|\b
+```
+
+</details><details>
+<summary>End Pattern</summary>
+
+```regex
+\z|\s|['"`]
+```
+
+</details>
+
+<details>
+<summary>Additional Matches</summary>
+
+Add these additional matches to the [Secret Scanning Custom Pattern](https://docs.github.com/en/enterprise-cloud@latest/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning#example-of-a-custom-pattern-specified-using-additional-requirements).
+
+
+- Not Match:
+
+  ```regex
+  ^mongodb\+srv://(test-)?user:(test-)?pass(word)?@
+  ```
+- Not Match:
+
+  ```regex
+  ^mongodb\+srv://%s:%s@
+  ```
+- Not Match:
+
+  ```regex
+  ^mongodb\+srv://auser:apass@
+  ```
+- Not Match:
+
+  ```regex
+  ^mongodb\+srv://b\*b%40f3tt%3D:%244to%40L8%3DMC@test3.test.build.10gen.cc/mydb%3F\?replicaSet=repl0
+  ```
+
+</details>
+
 ## UUIDv4 Bearer token (maybe Heroku)
 
 
