version: v1
rules:
  - id: arg_value_private_key
    severity: block
    applies_to:
      - build_arg_value
      - log_line
    regex: '-----BEGIN ([A-Z ]+ )?PRIVATE KEY-----'
    message: private key material detected