feat(python): add airbrake third parties rule (CWE-201)

rules/python/third_parties/airbrake.yml

@@ -0,0 +1,67 @@
+imports:
+  - python_shared_lang_datatype
+  - python_shared_lang_import1
+patterns:
+  - pattern: $<NOTIFIER>.$<METHOD>($<...>$<DATA_TYPE>$<...>)
+    filters:
+      - variable: NOTIFIER
+        detection: python_third_parties_airbrake_notifier
+        scope: cursor
+      - variable: METHOD
+        values:
+          - notify
+          - notify_sync
+      - variable: DATA_TYPE
+        detection: python_shared_lang_datatype
+        scope: result
+  - pattern: $<NOTICE>[$<...>][$<...>] = $<...>$<DATA_TYPE>$<...>
+    filters:
+      - variable: NOTICE
+        detection: python_third_parties_airbrake_build_notice
+        scope: cursor
+      - variable: DATA_TYPE
+        detection: python_shared_lang_datatype
+        scope: result
+auxiliary:
+  - id: python_third_parties_airbrake_notifier
+    patterns:
+      - pattern: $<NOTIFIER>($<...>)
+        filters:
+          - variable: NOTIFIER
+            detection: python_shared_lang_import1
+            scope: cursor
+            filters:
+              - variable: MODULE1
+                values: [pybrake]
+              - variable: NAME
+                values: [Notifier]
+  - id: python_third_parties_airbrake_build_notice
+    patterns:
+      - pattern: $<NOTIFIER>.build_notice($<...>)
+        filters:
+          - variable: NOTIFIER
+            detection: python_third_parties_airbrake_notifier
+            scope: cursor
+languages:
+  - python
+severity: medium
+skip_data_types:
+  - Unique Identifier
+metadata:
+  description: Leakage of sensitive data to Airbrake
+  remediation_message: |
+    ## Description
+
+    Leaking sensitive data to third-party loggers like Airbrake is a common cause of data leaks and can lead to data breaches.
+
+    ## Remediations
+
+    - **Do** ensure all sensitive data is removed when logging errors or events to Airbrake
+
+    ## References
+    - [Airbrake Docs](https://docs.airbrake.io/docs/platforms/python/)
+  cwe_id:
+    - 201
+  associated_recipe: Airbrake
+  id: python_third_parties_airbrake
+  documentation_url: https://docs.bearer.com/reference/rules/python_third_parties_airbrake

tests/python/third_parties/airbrake/test.js

@@ -0,0 +1,20 @@
+const {
+  createNewInvoker,
+  getEnvironment,
+} = require("../../../helper.js")
+const { ruleId, ruleFile, testBase } = getEnvironment(__dirname)
+
+describe(ruleId, () => {
+  const invoke = createNewInvoker(ruleId, ruleFile, testBase)
+
+  test("airbrake", () => {
+    const testCase = "main.py"
+
+    const results = invoke(testCase)
+
+    expect(results).toEqual({
+      Missing: [],
+      Extra: []
+    })
+  })
+})

tests/python/third_parties/airbrake/testdata/main.py

@@ -0,0 +1,12 @@
+import pybrake
+
+notifier = pybrake.Notifier()
+
+# bearer:expected python_third_parties_airbrake
+notifier.notify(user.email)
+# bearer:expected python_third_parties_airbrake
+notice = notifier.notify_sync(user.email)
+
+notice = notifier.build_notice()
+# bearer:expected python_third_parties_airbrake
+notice['params']['my_param'] = user.email