{
  "schemaVersion": "1.0",
  "id": "stellaops-secrets",
  "version": "2026.01",
  "createdAt": "2026-01-04T00:00:00Z",
  "description": "StellaOps Secret Detection Rules - Default Bundle",
  "rules": [
    {"id": "stellaops.secrets.aws-access-key", "version": "1.0.0", "category": "cloud", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.aws-secret-key", "version": "1.0.0", "category": "cloud", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.azure-storage-key", "version": "1.0.0", "category": "cloud", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.database-connection-string", "version": "1.0.0", "category": "database", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.datadog-api-key", "version": "1.0.0", "category": "api-keys", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.discord-bot-token", "version": "1.0.0", "category": "api-keys", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.docker-hub-token", "version": "1.0.0", "category": "registry", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.gcp-service-account", "version": "1.0.0", "category": "cloud", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.generic-api-key", "version": "1.0.0", "category": "api-keys", "severity": "medium", "enabled": true},
    {"id": "stellaops.secrets.generic-password", "version": "1.0.0", "category": "credentials", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.github-app-token", "version": "1.0.0", "category": "scm", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.github-pat", "version": "1.0.0", "category": "scm", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.gitlab-pat", "version": "1.0.0", "category": "scm", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.heroku-api-key", "version": "1.0.0", "category": "platform", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.jwt-secret", "version": "1.0.0", "category": "crypto", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.mailchimp-api-key", "version": "1.0.0", "category": "api-keys", "severity": "medium", "enabled": true},
    {"id": "stellaops.secrets.npm-token", "version": "1.0.0", "category": "registry", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.nuget-api-key", "version": "1.0.0", "category": "registry", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.private-key-ec", "version": "1.0.0", "category": "crypto", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.private-key-generic", "version": "1.0.0", "category": "crypto", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.private-key-openssh", "version": "1.0.0", "category": "crypto", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.private-key-rsa", "version": "1.0.0", "category": "crypto", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.pypi-token", "version": "1.0.0", "category": "registry", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.sendgrid-api-key", "version": "1.0.0", "category": "api-keys", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.slack-token", "version": "1.0.0", "category": "api-keys", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.slack-webhook", "version": "1.0.0", "category": "webhook", "severity": "medium", "enabled": true},
    {"id": "stellaops.secrets.stripe-restricted-key", "version": "1.0.0", "category": "payment", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.stripe-secret-key", "version": "1.0.0", "category": "payment", "severity": "critical", "enabled": true},
    {"id": "stellaops.secrets.telegram-bot-token", "version": "1.0.0", "category": "api-keys", "severity": "high", "enabled": true},
    {"id": "stellaops.secrets.twilio-api-key", "version": "1.0.0", "category": "api-keys", "severity": "high", "enabled": true}
  ],
  "integrity": {
    "algorithm": "sha256",
    "rulesFile": "secrets.ruleset.rules.jsonl",
    "rulesDigest": "placeholder-will-be-computed-at-build"
  },
  "statistics": {
    "totalRules": 30,
    "enabledRules": 30,
    "categories": ["cloud", "credentials", "api-keys", "registry", "scm", "platform", "crypto", "payment", "webhook", "database"],
    "severityCounts": {
      "critical": 12,
      "high": 14,
      "medium": 4
    }
  }
}