Public verification

Redaction Test Lab

Run public redaction test cases in your browser to verify output + report behavior.

Never paste real secrets. Test Lab uses FAKE example strings only.

Search cases

Category

Show only failures

Cases visible: 40 / 40 · Run: 0 · Pass: 0 · Fail: 0

Authorization header is masked

auth-header-basic · Auth

NOT RUN

cURL -H Authorization value is masked

auth-header-curl-flag · Auth

NOT RUN

cURL basic auth keeps user and masks password

basic-auth-user · Auth

NOT RUN

Inline bearer token is masked

inline-bearer · Auth

NOT RUN

JWT token is replaced

jwt-token · Auth

NOT RUN

x-api-key header is masked

api-key-header · API Keys

NOT RUN

api-key header is masked

api-key-alt-header · API Keys

NOT RUN

cURL --header api key is masked

api-key-curl-header · API Keys

NOT RUN

JSON api_key value is masked

secret-json-api-key · Generic

NOT RUN

api_key query param is masked

query-api-key · HAR-ish

NOT RUN

Cookie header is masked

cookie-header · Cookies

NOT RUN

Set-Cookie header is masked

set-cookie-header · Cookies

NOT RUN

cURL -H Cookie value is masked

cookie-curl-header · Cookies

NOT RUN

AWS access key id is masked

aws-access-key-id · Cloud

NOT RUN

AWS secret env assignment is masked

aws-secret-env · Cloud

NOT RUN

aws_secret_access_key key in JSON-ish text is masked

aws-secret-json · Cloud

NOT RUN

Stripe key is masked

stripe-key · Payments

NOT RUN

Stripe restricted key is masked

stripe-restricted-key · Payments

NOT RUN

Stripe signature header is masked

stripe-signature-header · Payments

NOT RUN

GitHub ghp token is masked

github-ghp · Comms

NOT RUN

GitHub PAT token is masked

github-pat · Comms

NOT RUN

Slack xoxb token is masked

slack-xoxb · Comms

NOT RUN

Slack xapp token is masked

slack-xapp · Comms

NOT RUN

SendGrid key is masked

sendgrid-key · Comms

NOT RUN

Twilio account SID is masked

twilio-account-sid · Comms

NOT RUN

Twilio auth token key/value is masked

twilio-auth-token-context · Comms

NOT RUN

GitHub token regex avoids inner-word false positives

github-boundary-guard · Comms

NOT RUN

Private key block is replaced

private-key-block · Secrets blocks

NOT RUN

Postgres connection URL masks password

db-postgres-url · Databases

NOT RUN

MySQL connection URL masks password

db-mysql-url · Databases

NOT RUN

client_secret in JSON is masked

json-client-secret · Generic

NOT RUN

password in JSON is masked

json-password · Generic

NOT RUN

webhook_secret in JSON is masked

json-webhook-secret · Generic

NOT RUN

token and signature query params are masked

query-token-signature · HAR-ish

NOT RUN

access_token and id_token query params are masked

query-access-id-token · HAR-ish

NOT RUN

session/auth query params are masked

query-session-auth · HAR-ish

NOT RUN

Email is masked

email-redaction · Generic

NOT RUN

IPv4 is masked

ip-redaction · Generic

NOT RUN

Card-like number (Luhn valid) is masked

card-redaction · Payments

NOT RUN

Output contains at least one redaction placeholder

regex-placeholder-shape · Generic

NOT RUN