Question 1

What does the Generic API Key Pattern regex pattern do?

Accepted Answer

Matches common API key variable patterns (api_key, token, secret_key, etc.) followed by = or : and a value of 20+ alphanumeric characters. Useful for secret scanning.

Question 2

How do I use the Generic API Key Pattern regex in JavaScript?

Accepted Answer

Use the pattern /(?:api[_-]?key|apikey|api[_-]?secret|token|auth[_-]?token|access[_-]?token|secret[_-]?key)\s*[=:]\s*['"]?([a-zA-Z0-9_-]{20,})['"]?/gi with the String.match() or String.matchAll() method. For example: const matches = text.match(/(?:api[_-]?key|apikey|api[_-]?secret|token|auth[_-]?token|access[_-]?token|secret[_-]?key)\s*[=:]\s*['"]?([a-zA-Z0-9_-]{20,})['"]?/gi);

Question 3

What regex flags does this pattern use?

Accepted Answer

This pattern uses the global, case-insensitive flags (gi). The global flag finds all matches in the input, not just the first. The case-insensitive flag matches regardless of letter casing.

Question 4

Which programming languages support this regex?

Accepted Answer

Fully supported in JS, PYTHON, JAVA, PHP, GO

Question 5

What strings does this regex match?

Accepted Answer

This pattern matches strings like: api_key=abc123def456ghi789jkl012, API_SECRET: 'sk_live_abcdefghijklmnopqrst', token="eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9". It does not match strings like: api_key=short, not_a_key = value, api_key=.

Language	Support
JS	Full support
PYTHON	Full support
JAVA	Full support
PHP	Full support
GO	Full support

Generic API Key Pattern

Pattern

Try It

Explanation

Test Strings

Matching

Non-matching

Language Compatibility

Code Snippets

Related Patterns

JWT Token

AWS Access Key ID