mcpwall

Overview Schema Related Servers Score Discussions

mcpwall
src
engine

secrets.ts•2.59 KiB

/** * Secret pattern scanner * Detects API keys, tokens, and other secrets using regex patterns and entropy analysis */ import type { SecretPattern } from '../types.js'; /** A secret pattern with its regex pre-compiled for performance */ export interface CompiledSecretPattern { name: string; regex: RegExp; entropy_threshold?: number; } /** * Pre-compile secret patterns. Call once at startup. * Throws on invalid regex (should be caught by Zod validation first). */ export function compileSecretPatterns(patterns: SecretPattern[]): CompiledSecretPattern[] { return patterns.map((p) => ({ name: p.name, regex: new RegExp(p.regex), entropy_threshold: p.entropy_threshold, })); } /** * Scan a string value for known secret patterns (using pre-compiled regexes) * Returns the name of the matched pattern, or null if no match */ export function scanForSecrets(value: string, patterns: CompiledSecretPattern[]): string | null { for (const pattern of patterns) { pattern.regex.lastIndex = 0; const match = pattern.regex.exec(value); if (match) { if (pattern.entropy_threshold !== undefined) { const matchedString = match[0]; const entropy = shannonEntropy(matchedString); if (entropy < pattern.entropy_threshold) { continue; } } return pattern.name; } } return null; } /** * Recursively scan all string values in an object or array * Returns the name of the first matched pattern, or null */ export function deepScanObject(obj: unknown, patterns: CompiledSecretPattern[]): string | null { if (typeof obj === 'string') { return scanForSecrets(obj, patterns); } if (Array.isArray(obj)) { for (const item of obj) { const found = deepScanObject(item, patterns); if (found) { return found; } } } if (obj && typeof obj === 'object') { for (const value of Object.values(obj)) { const found = deepScanObject(value, patterns); if (found) { return found; } } } return null; } /** * Calculate Shannon entropy of a string * Returns a value typically between 0 (no randomness) and ~5 (high randomness) * Useful for detecting high-entropy secrets like API keys */ export function shannonEntropy(str: string): number { if (str.length === 0) { return 0; } const freq: Record<string, number> = {}; for (const char of str) { freq[char] = (freq[char] || 0) + 1; } const len = str.length; let entropy = 0; for (const count of Object.values(freq)) { const p = count / len; entropy -= p * Math.log2(p); } return entropy; }

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/behrensd/mcpwall'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

secrets.ts•2.59 KiB