# Gitleaks ignore file
# These are fingerprints for known false positives in historical commits
# Format: commit:file:rule:line

# Test credentials in test_credentials_handling.py (commit eec6d6d)
# These are intentional fake passwords for testing credential masking
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:31
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:39
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:78
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:85
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:174
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:184
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:239
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:288
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:326
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:359
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:splunk-password:432
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:generic-credential:290
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_credentials_handling.py:generic-credential:327

# Test credentials in test_http_surface.py (commit eec6d6d)
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:tests/security/test_http_surface.py:splunk-password:369

# splunk_client.py password parameter (commits 64ac233 and eec6d6d)
# This is the password= parameter in splunklib.client.connect() - not a hardcoded secret
64ac233bfd533af5bd907ec9af136e10d1703f28:src/splunk_client.py:generic-credential:36
eec6d6dc260ec720c48f8d4b9f3ebae5db785252:src/splunk_client.py:generic-credential:46

# Docker compose dev defaults (commit a71bc8a)
# Default dev password Chang3d! - well-known, not a production secret
a71bc8a403dc1071a407a350c8d24ec891b59ad8:docker-compose-dev.yml:splunk-password:115
a71bc8a403dc1071a407a350c8d24ec891b59ad8:docker-compose-dev.yml:splunk-password:249
a71bc8a403dc1071a407a350c8d24ec891b59ad8:docker-compose-dev.yml:generic-credential:248

# Meta: gitleaksignore file itself triggers on fingerprint text (commit 88d1fff)
88d1fffb6e9e2ee1032940106947d6ca792e3c36:.gitleaksignore:generic-credential:25

# Sentry integration ContextVar tokens - not secrets, just variable names
# These are Python contextvars.ContextVar.set() return values, named "token" per stdlib convention
# Original files (commit 141f35f - now deleted)
141f35f3ca9425db7b276e1c964528f75a54ad45:src/core/sentry_integration.py:generic-credential:220
141f35f3ca9425db7b276e1c964528f75a54ad45:src/core/sentry_integration.py:generic-credential:277
141f35f3ca9425db7b276e1c964528f75a54ad45:src/core/sentry_middleware.py:generic-credential:58
141f35f3ca9425db7b276e1c964528f75a54ad45:src/core/sentry_middleware.py:generic-credential:59
# Refactored sentry subpackage (commit 8f63aa5)
8f63aa5470fe7953e54953b5e6b2bd4cca655aff:src/core/sentry/http_middleware.py:generic-credential:51
8f63aa5470fe7953e54953b5e6b2bd4cca655aff:src/core/sentry/http_middleware.py:generic-credential:52
8f63aa5470fe7953e54953b5e6b2bd4cca655aff:src/core/sentry/decorators.py:generic-credential:53
8f63aa5470fe7953e54953b5e6b2bd4cca655aff:src/core/sentry/decorators.py:generic-credential:101

# Dict key name "splunk_password" in config extractor and utils
# These are configuration key mappings, not hardcoded secrets
0c6f03aa9360a176e81f8b731b2929debd2e6fc1:src/core/enhanced_config_extractor.py:generic-credential:201
0c6f03aa9360a176e81f8b731b2929debd2e6fc1:src/core/utils.py:splunk-password:38

# PR #118 (bearer token auth): Gitleaks generic-credential false positives on
# Splunk credential variable names and config-key mappings (identifiers only).
# Commit b12ed6d is the first token-auth commit.
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/client_identity.py:generic-credential:290
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/client_identity.py:generic-credential:291
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/client_identity.py:generic-credential:292
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/client_identity.py:generic-credential:296
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:201
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:202
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:203
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/utils.py:generic-credential:27
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/utils.py:generic-credential:52
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/utils.py:generic-credential:53
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/client/splunk_client.py:generic-credential:46
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/client/splunk_client.py:generic-credential:51
b12ed6d07dcc7dabc7b177fac592e28753f88991:tests/test_splunk_client.py:splunk-password:183
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:25
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:26
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/server.py:generic-credential:306
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/server.py:generic-credential:307
919e4aa97539e05a307fe719894d6ba650ff3ff5:tests/test_splunk_client.py:splunk-password:185
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:33
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:35
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:55
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:59
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/splunk_client.py:generic-credential:68
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/utils.py:generic-credential:74
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/utils.py:generic-credential:75
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/utils.py:generic-credential:106
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/client/splunk_client.py:generic-credential:64
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:438
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:439
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:440
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:441
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:442
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:443
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:521
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/enhanced_config_extractor.py:generic-credential:522
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/client_identity.py:generic-credential:337
b12ed6d07dcc7dabc7b177fac592e28753f88991:src/core/client_identity.py:generic-credential:338
2bc622c4d5dcd09744727b533eea21e8abd3b9de:src/splunk_client.py:generic-credential:55
c01a9a453a75d6cdb3b65391f25c08405b3e920a:.gitleaksignore:generic-credential:57

# PR #121 (ITSI MCP server): Gitleaks false positives.
# These flag config-key identifiers, environment-variable indirection
# (os.getenv / os.environ), local-dev defaults (Chang3d!), or "token"
# variable names from the standard splunklib auth scheme — none of these
# values are real secrets.

# 05a1508 — initial ITSI MCP add: env defaults & header parsing identifiers
05a1508317c9c4760b59038bab902d96dc393f4f:mcp_itsi/config/settings.py:splunk-password:87
05a1508317c9c4760b59038bab902d96dc393f4f:mcp_itsi/config/settings.py:generic-credential:88
05a1508317c9c4760b59038bab902d96dc393f4f:mcp_itsi/config/headers.py:splunk-password:101
05a1508317c9c4760b59038bab902d96dc393f4f:mcp_itsi/config/headers.py:generic-credential:102
05a1508317c9c4760b59038bab902d96dc393f4f:mcp_itsi/knowledge/content/cookbook/header_auth.md:splunk-password:39
05a1508317c9c4760b59038bab902d96dc393f4f:mcp_itsi/knowledge/content/cookbook/header_auth.md:splunk-password:75
# Same content after rebase onto origin/main:
5f00683c0218f3c00cb2765a98237e346f2bd4b3:mcp_itsi/config/settings.py:splunk-password:87
5f00683c0218f3c00cb2765a98237e346f2bd4b3:mcp_itsi/config/settings.py:generic-credential:88
5f00683c0218f3c00cb2765a98237e346f2bd4b3:mcp_itsi/config/headers.py:splunk-password:101
5f00683c0218f3c00cb2765a98237e346f2bd4b3:mcp_itsi/config/headers.py:generic-credential:102
5f00683c0218f3c00cb2765a98237e346f2bd4b3:mcp_itsi/knowledge/content/cookbook/header_auth.md:splunk-password:39
5f00683c0218f3c00cb2765a98237e346f2bd4b3:mcp_itsi/knowledge/content/cookbook/header_auth.md:splunk-password:75

# b06585d — docker-compose service for mcp-itsi (env passthrough only)
b06585d676e62028542a2f89fa635691315d1fdf:docker-compose.yml:splunk-password:179
c8e8db77a19356f40b18c7147e289a6ae421124a:docker-compose.yml:splunk-password:179

# Live integration test scripts: env-derived auth headers, no hardcoded secrets
d4c5b2350dcb2401aff1032c0c7b82cfb579eac9:scripts/test_itsi_mcp_deep.py:splunk-password:51
d4c5b2350dcb2401aff1032c0c7b82cfb579eac9:scripts/test_itsi_mcp.py:splunk-password:45
d4c665a183886cd25652ec58112aa6357556fb66:scripts/test_itsi_plugin_isolation.py:splunk-password:51
6dc967712746282cf90ae82268a9572399dcba20:scripts/test_itsi_mcp_crud.py:splunk-password:632
a677dfbae7dd5b417b349c6ffc662b3f8c8f0689:scripts/test_itsi_service_creation_scenario.py:splunk-password:636
4a193b55c2c5bcc8f0fb662ebec0c36ae6d19513:scripts/test_itsi_mcp_deep.py:splunk-password:51
4a193b55c2c5bcc8f0fb662ebec0c36ae6d19513:scripts/test_itsi_mcp.py:splunk-password:45
6f5f96be1bbfcf89b134a08235066557cd6d7c03:scripts/test_itsi_plugin_isolation.py:splunk-password:51
da11a5fdabb63acd79fdadc16c6c9bb05345a0d8:scripts/test_itsi_mcp_crud.py:splunk-password:632
6837c5977d6df30ec66938e276be67e6443edfee:scripts/test_itsi_service_creation_scenario.py:splunk-password:636

# f7bd2ee — unit test uses the well-known dev default Chang3d!
f7bd2ee5e3ea6f3599ab9a60bc8ed6d6c59f1a31:tests/test_mcp_itsi.py:splunk-password:60
361bbb8c653f643841ca0e9ceaa51091c8da3ea4:tests/test_mcp_itsi.py:splunk-password:60

# 257c93f — token/session auth alignment with parent server
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/client/http_client.py:generic-credential:179
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/config/settings.py:generic-credential:89
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/config/settings.py:generic-credential:92
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/config/headers.py:generic-credential:136
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/config/headers.py:splunk-token:138
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/config/headers.py:generic-credential:152
257c93ff9d47a7cc575502e12953411110a947be:mcp_itsi/config/headers.py:generic-credential:153
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/client/http_client.py:generic-credential:179
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/config/settings.py:generic-credential:89
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/config/settings.py:generic-credential:92
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/config/headers.py:generic-credential:136
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/config/headers.py:splunk-token:138
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/config/headers.py:generic-credential:152
1fc8a2bda4c88553ae9462f1fa35828f470c6954:mcp_itsi/config/headers.py:generic-credential:153
