# Benchmark corpus: Generic secrets detection

# --- AWS Keys ---

# VULN: aws-access-key-id
aws_access_key_id = "AKIAFAKEACCESSKEYID00"

# VULN: aws-secret-access-key
aws_secret_access_key = "fakesecretkeyFAKE00000000000000000000"

# SAFE: aws-access-key-id
aws_access_key_id = os.environ.get("AWS_ACCESS_KEY_ID")

# SAFE: aws-secret-access-key
aws_secret_access_key = os.environ.get("AWS_SECRET_ACCESS_KEY")

# --- GitHub Tokens ---

# VULN: github-pat
github_token = "ghp_FAKEFAKEFAKEFAKEFAKEFAKEFAKEFAKE0000"

# SAFE: github-pat
github_token = os.environ.get("GITHUB_TOKEN")

# --- Stripe Keys ---

# VULN: stripe-api-key
stripe_key = "test_FAKEFAKEFAKEFAKE1234"

# SAFE: stripe-api-key
stripe_key = os.environ.get("STRIPE_SECRET_KEY")

# --- Private Keys ---

# VULN: private-key-rsa
private_key = "-----BEGIN RSA PRIVATE KEY-----"

# SAFE: private-key-rsa
private_key_path = "/etc/ssl/private/server.key"

# --- Database URLs ---

# VULN: database-url
database_url = "postgresql://admin:password123@db.example.com:5432/mydb"

# SAFE: database-url
database_url = os.environ.get("DATABASE_URL")

# --- JWT Tokens ---

# VULN: jwt-token
jwt = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIn0.dozjgNryP4J3jVmNHl0w5N_XgL0n3I9PlFUP0THsR8U"

# SAFE: jwt-token
jwt = get_token_from_header(request)

# --- Hardcoded Passwords ---

# VULN: hardcoded-password
password = "my_secret_password_123"

# SAFE: hardcoded-password
password = os.environ.get("APP_PASSWORD")

# --- OpenAI API Key ---

# VULN: openai-api-key
openai_key = "sk-aBcDeFgHiJkLmNoPqRsTuVwXyZ0123456789AbCdEfGhIjKlMn"

# SAFE: openai-api-key
openai_key = os.environ.get("OPENAI_API_KEY")
