salvacybersec/keyhunter
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(05-01): extend VerifySpec and Finding, add gjson dep

Browse Source 
- VerifySpec: add SuccessCodes, FailureCodes, RateLimitCodes, MetadataPaths, Body
- Preserve legacy ValidStatus/InvalidStatus for backward compat
- Add EffectiveSuccessCodes/FailureCodes/RateLimitCodes fallback helpers
- Add ExtractMetadata helper using gjson (skeleton for Plan 05-03)
- Finding: add Verified, VerifyStatus, VerifyHTTPCode, VerifyMetadata, VerifyError
- Add github.com/tidwall/gjson v1.18.0 as direct dependency
This commit is contained in:
salvacybersec
2026-04-05 15:41:13 +03:00
parent 499f5d5025
commit 30c0e9871b
4 changed files with 84 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
pkg/engine/finding.go
View File

@@ -14,6 +14,13 @@ type Finding struct {
LineNumber int
Offset int64
DetectedAt time.Time
// Verification fields populated when scan --verify is set (Phase 5).
Verified bool // true if verifier ran against this finding
VerifyStatus string // "live", "dead", "rate_limited", "error", "unknown"
VerifyHTTPCode int // HTTP status code returned by verify endpoint
VerifyMetadata map[string]string // extracted metadata from response (org, tier, etc.)
VerifyError string // non-empty if VerifyStatus == "error"
}
// MaskKey returns a masked representation: first 8 chars + "..." + last 4 chars.