Data

Tools

Indexes

Applications

Experiments

Open Source Science

chatgpt-api-scanner

Scan GitHub for available OpenAI API Keys

https://github.com/junyi-99/chatgpt-api-scanner

Science Score: 44.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
    Found CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
    Found .zenodo.json file
  • DOI references
  • Academic publication links
  • Committers with academic emails
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (14.9%) to scientific vocabulary

Keywords

chatgpt chatgpt-api freegpt gpt gpt-3 gpt4 selenium
Last synced: 6 months ago · JSON representation ·

Repository

Scan GitHub for available OpenAI API Keys

Basic Info
  • Host: GitHub
  • Owner: Junyi-99
  • License: mit
  • Language: Python
  • Default Branch: main
  • Homepage:
  • Size: 4.29 MB
Statistics
  • Stars: 378
  • Watchers: 6
  • Forks: 80
  • Open Issues: 5
  • Releases: 5
Topics
chatgpt chatgpt-api freegpt gpt gpt-3 gpt4 selenium
Created almost 2 years ago · Last pushed 12 months ago
Metadata Files
Readme License Citation

README.md

ChatGPT-API-Scanner

This tool scans GitHub for available OpenAI API Keys.

Result Demo 1

[!NOTE] As of August 21, 2024, GitHub has enabled push protection to prevent API key leakage, which could significantly impact this repository.

[!NOTE] As of March 11, 2024, secret scanning and push protection will be enabled by default for all new user-owned public repositories that you create. Check this announcement here.

[!WARNING] ⚠️ DISCLAIMER

THIS PROJECT IS ONLY FOR SECURITY RESEARCH AND REMINDS OTHERS TO PROTECT THEIR PROPERTY, DO NOT USE IT ILLEGALLY!!

The project authors are not responsible for any consequences resulting from misuse.

Keeping Your API Key Safe

It's important to keep it safe to prevent unauthorized access. Here are some useful resources:

Prerequisites

This project has been tested and works perfectly on macOS, Windows and WSL2 (see Run Linux GUI apps on the Windows Subsystem for Linux)

Ensure you have the following installed on your system:

  • Google Chrome
  • Python3

Installation

  1. Clone the repository:

    ```bash git clone https://github.com/Junyi-99/ChatGPT-API-Leakage

    cd ChatGPT-API-Leakage ```

  2. Install required pypi packages

    bash pip install selenium tqdm openai rich

Usage

  1. Run the main script:

    bash python3 src/main.py

  2. You will be prompted to log in to your GitHub account in the browser. Please do so.

That's it! The script will now scan GitHub for available OpenAI API Keys.

Command Line Arguments

The script supports several command line arguments for customization:

| Parameter | Description | Default | |-----------|-------------|---------| | --from-iter | Start scanning from a specific iteration | None | | --debug | Enable debug mode for detailed logging | False | | -ceko, --check-existed-keys-only | Only check existing keys in the database | False | | -k, --keywords | Specify a list of search keywords | Default keyword list | | -l, --languages | Specify a list of programming languages to search | Default language list |

Examples:

```bash

Start scanning from iteration 100

python3 src/main.py --from-iter 100

Only check existing keys

python3 src/main.py --check-existed-keys-only

Use custom keywords and languages

python3 src/main.py -k "openai" "chatgpt" -l python javascript ```

Results

The results are stored in the github.db SQLite database, which is created in the same directory as the script.

You can view the contents of this database using any SQLite database browser of your choice.

Running Demo

Running Demo

Result in DB

Result stored in SQLite (different API Key status)

FAQ

Q: Why are you using Selenium instead of the GitHub Search API?

A: The official GitHub search API does not support regex search. Only web-based search does.

Q: Why are you limiting the programming language in the search instead of searching all languages?

A: The web-based search only provides the first 5 pages of results. There are many API keys available. By limiting the language, we can break down the search results and obtain more keys.

Q: Why don't you use multithreading?

A: Because GitHub searches and OpenAI are rate-limited. Using multithreading does not significantly increase efficiency.

Q: Why is the API Key provided in your repository not working?

A: The screenshots in this repo demonstrate the tool's ability to scan for available API keys. However, these keys may expire within hours or days. Please use the tool to scan for your own keys instead of relying on the provided examples.

Q: What's the push protection?

A: see picture.

GitHub Push Protection

Owner

  • Name: Junyi
  • Login: Junyi-99
  • Kind: user
  • Location: Singapore
  • Company: National University of Singapore

Citation (CITATION.cff) 

cff-version: 1.2.0
message: "If you use this software, please cite it as below."
authors:
- family-names: "Hou"
  given-names: "Junyi"
  orcid: "https://orcid.org/0009-0003-0443-456X"

title: "ChatGPT-API-Leakage"
version: 1.5
# doi: 10.5281/zenodo.1234
date-released: 2024-02-21
url: "https://github.com/Junyi-99/ChatGPT-API-Leakage"

GitHub Events

Total
  • Issues event: 4
  • Watch event: 174
  • Issue comment event: 5
  • Push event: 7
  • Pull request review event: 1
  • Pull request event: 5
  • Fork event: 38
Last Year
  • Issues event: 4
  • Watch event: 174
  • Issue comment event: 5
  • Push event: 7
  • Pull request review event: 1
  • Pull request event: 5
  • Fork event: 38

Committers

Last synced: 9 months ago

All Time
  • Total Commits: 75
  • Total Committers: 3
  • Avg Commits per committer: 25.0
  • Development Distribution Score (DDS): 0.04
Past Year
  • Commits: 38
  • Committers: 2
  • Avg Commits per committer: 19.0
  • Development Distribution Score (DDS): 0.053
Top Committers
Name Email Commits
Junyi Hou h****4@g****m 72
Ying-Shan Lin y****r@g****m 2
jesty j****f@h****m 1

Issues and Pull Requests

Last synced: 6 months ago

All Time
  • Total issues: 13
  • Total pull requests: 6
  • Average time to close issues: 30 days
  • Average time to close pull requests: 11 days
  • Total issue authors: 11
  • Total pull request authors: 5
  • Average comments per issue: 1.92
  • Average comments per pull request: 0.17
  • Merged pull requests: 2
  • Bot issues: 0
  • Bot pull requests: 0
Past Year
  • Issues: 9
  • Pull requests: 4
  • Average time to close issues: about 1 month
  • Average time to close pull requests: 29 minutes
  • Issue authors: 7
  • Pull request authors: 3
  • Average comments per issue: 1.33
  • Average comments per pull request: 0.0
  • Merged pull requests: 1
  • Bot issues: 0
  • Bot pull requests: 0
View more stats
Top Authors
Issue Authors
  • mesbahulalam (1)
  • jestyf (1)
  • Junyi-99 (1)
  • MrYoavon2 (1)
  • Godwhitelight (1)
  • rfrlcode (1)
Pull Request Authors
  • yslinear (2)
  • alexechoi (2)
  • Tarkpak (1)
  • jestyf (1)
Top Labels
Issue Labels
Pull Request Labels

Dependencies

requirements.txt pypi
  • openai *
  • pickle *
  • selenium *
  • sqlite3 *
  • tqdm *