Skip to content

False Positive: Atlassian MCP tool name #1891

New issue
New issue
Closed
#1892
Closed
False Positive: Atlassian MCP tool name#1891
#1892
Labels
bugSomething isn't working
@yokonao

Description

@yokonao
yokonao
opened on Jun 7, 2025

Describe the bug
Gitleaks incorrectly identifies common Confluence API method (MCP tool) names like getPagesInConfluenceSpace and searchConfluenceUsingCql as atlassian-api-token secrets, leading to false positives.

To Reproduce

Run Gitleaks with verbose output on a string containing the identified method names:

gitleaks stdin --verbose <<<"getPagesInConfluenceSpace,searchConfluenceUsingCql"

Result:


    ○
    │╲
    │ ○
    ○ ░
    ░    gitleaks

Finding:     getPagesInConfluenceSpace,searchConfluenceUsingCql
Secret:      searchConfluenceUsingCql
RuleID:      atlassian-api-token
Entropy:     3.855389

7:44AM INF scanned ~51 bytes (51 bytes) in 47.4ms
7:44AM WRN leaks found: 1

Expected behavior

The command should not detect any secrets for the given input, as "getPagesInConfluenceSpace" and "searchConfluenceUsingCql" are not Atlassian API tokens. They are method names commonly used when interacting with the Confluence API.

Screenshots
N/A

Basic Info (please complete the following information):

  • OS: Darwin
  • Gitleaks Version: gitleaks version 8.26.0

Additional context
Add any other context about the problem here.

cc @zricethezav

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions