Revisions of trufflehog
Ana Guerrero (anag+factory)
accepted
request 1155283
from
Jeff Kowalczyk (jfkw)
(revision 21)
- Update to version 3.68.4: * Add naive S3 ignorelist (#2536) * fix(deps): update module github.com/stretchr/testify to v1.9.0 (#2534) * fix(deps): update module cloud.google.com/go/storage to v1.39.0 (#2533) * fix(deps): update module github.com/felixge/fgprof to v0.9.4 (#2532) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.30 (#2529) * Create basic escaped unicode decoder (#2456) * [feat] - Make the client configurable (#2528) * Ignore canary IDs in notifications (#2526) * Fix minor typo (#2527) * Remove one filter word (#2525) * fix(deps): update module golang.org/x/crypto to v0.20.0 (#2523) * fix(deps): update module github.com/prometheus/client_golang to v1.19.0 (#2522) * fix(deps): update module github.com/googleapis/gax-go/v2 to v2.12.2 (#2521) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.28 (#2520) * fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 (#2513) * Improve Gitlab default URL handling (#2491) * Implement detectors.EndpointCustomizer on datadogtoken (#2510) * JDBC test and parsing improvements (#2516) * Improve monogo and snowflake detectors (#2518) * fix(deps): update module google.golang.org/api to v0.167.0 (#2512) * fix(deps): update module github.com/xanzy/go-gitlab to v0.98.0 (#2511) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.25 (#2509) * fix(deps): update golang.org/x/exp digest to 814bf88 (#2508) * fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 (#2455) * fix(deps): update module github.com/google/go-github/v57 to v59 (#2464) * fix prefix check when returning early (#2503) (forwarded request 1155212 from ph03nix)
Dominique Leuenberger (dimstar_suse)
accepted
request 1153484
from
Jeff Kowalczyk (jfkw)
(revision 20)
- Update to version 3.68.3: * Ignore canary IDs in notifications (#2526) * Fix minor typo (#2527) * Remove one filter word (#2525) * fix(deps): update module golang.org/x/crypto to v0.20.0 (#2523) * fix(deps): update module github.com/prometheus/client_golang to v1.19.0 (#2522) * fix(deps): update module github.com/googleapis/gax-go/v2 to v2.12.2 (#2521) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.28 (#2520) * fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 (#2513) * Improve Gitlab default URL handling (#2491) * Implement detectors.EndpointCustomizer on datadogtoken (#2510) * JDBC test and parsing improvements (#2516) * Improve monogo and snowflake detectors (#2518) (forwarded request 1153115 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1152301
from
Jeff Kowalczyk (jfkw)
(revision 19)
- Update to version 3.68.2: * fix(deps): update module google.golang.org/api to v0.167.0 (#2512) * fix(deps): update module github.com/xanzy/go-gitlab to v0.98.0 (#2511) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.25 (#2509) * fix(deps): update golang.org/x/exp digest to 814bf88 (#2508) * fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 (#2455) * fix(deps): update module github.com/google/go-github/v57 to v59 (#2464) * fix prefix check when returning early (#2503) * Clean up some detectors (#2501) * Gitlab scan targets (#2470) * Tell git to ignore directory ownership (fixes #2495) (#2496) (forwarded request 1152031 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1150161
from
Jeff Kowalczyk (jfkw)
(revision 18)
- Update to version 3.68.1: * Clean up some detectors (#2501) * Gitlab scan targets (#2470) * Tell git to ignore directory ownership (fixes #2495) (#2496) * Identify some canary tokens without detonation (#2500) * fix(deps): update module go.uber.org/zap to v1.27.0 (#2498) * fix(deps): update module github.com/snowflakedb/gosnowflake to v1.8.0 (#2497) * fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.2 (#2493) (forwarded request 1150085 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1149580
from
Jeff Kowalczyk (jfkw)
(revision 17)
- Update to version 3.68.0: * Identify some canary tokens without detonation (#2500) * fix(deps): update module go.uber.org/zap to v1.27.0 (#2498) * fix(deps): update module github.com/snowflakedb/gosnowflake to v1.8.0 (#2497) * fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.2 (#2493) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.22 (#2492) * fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to v7 (#2490) * Add Display method to SourceUnit and Kind member to the CommonSourceUnit (#2450) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.21 (#2489) * fix(deps): update module github.com/hashicorp/golang-lru to v2 (#2486) * concurrency uint8 to int (#2488) * use read full (#2474) * [chore] - upgrade lru cache version (#2487) * fix(deps): update module github.com/azuread/microsoft-authentication-library-for-go to v1.2.2 (#2484) * fix(deps): update module github.com/hashicorp/golang-lru to v2 (#2483) * fix(deps): update module github.com/hashicorp/golang-lru to v0.6.0 (#2482) * fix(deps): update module github.com/hashicorp/golang-lru to v2 (#2481) * fix(deps): update module google.golang.org/api to v0.165.0 (#2480) * fix(deps): update module go.mongodb.org/mongo-driver to v1.14.0 (#2479) * fix(deps): update module github.com/hashicorp/golang-lru to v0.6.0 (#2478) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.20 (#2477) * fix(deps): update module github.com/hashicorp/golang-lru to v2 (#2462) * move clenaup outside the engine (#2475) * tighten keyword match (#2473) * [chore] Increase TestMaxDiffSize timeout (#2472) * add lazy quantifier to prefixregex (#2466) * [cleanup] - Extract buffer logic (#2409) * update gitlab proto (#2469) * add missing prefixregex (#2468) * Remove some noisy / less useful detectors (#2467) (forwarded request 1149088 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1146666
from
Jeff Kowalczyk (jfkw)
(revision 16)
- Update to version 3.67.6: * [chore] Add some doc comments to source manager (#2434) * 2396 since commit stopped working (#2402) * Update custom detector example (#2435) * chore(deps): update golangci/golangci-lint-action action to v4 (#2445) * chore(deps): update github/codeql-action action to v3 (#2444) * fix(deps): update module google.golang.org/api to v0.164.0 (#2442) * fix(deps): update module golang.org/x/oauth2 to v0.17.0 (#2441) * chore(deps): update actions/setup-go action to v5 (#2443) * fix(deps): update module golang.org/x/net to v0.21.0 (#2440) * fix(deps): update module golang.org/x/crypto to v0.19.0 (#2439) * fix(deps): update module cloud.google.com/go/storage to v1.38.0 (#2438) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.16 (#2436) * fix(deps): update module go.uber.org/mock to v0.4.0 (#2437) * fix(deps): update module go.mongodb.org/mongo-driver to v1.13.1 (#2433) * fix(deps): update module github.com/xanzy/go-gitlab to v0.97.0 (#2432) * fix(deps): update module github.com/prometheus/client_golang to v1.18.0 (#2429) * fix(deps): update module github.com/snowflakedb/gosnowflake to v1.7.2 (#2430) * fix(deps): update module github.com/thezeroslave/zapsentry to v1.20.2 (#2431) * fix(deps): update module github.com/hashicorp/golang-lru to v0.6.0 (#2428) * fix(deps): update module github.com/google/uuid to v1.6.0 (#2427) * chore(gcp): ignore known test creds (#2413) * [fix] Add unit information to error returned by ChunkUnit (#2410) * fix(deps): update module github.com/google/go-containerregistry to v0.19.0 (#2425) * fix(deps): update module github.com/getsentry/sentry-go to v0.27.0 (#2424) * fix(deps): update module cloud.google.com/go/storage to v1.37.0 (#2423) * chore(deps): update sigstore/cosign-installer action to v3.4.0 (#2421) * chore(deps): update golang docker tag to v1.22 (#2420) * fix(deps): update module github.com/aymanbagabas/go-osc52 to v1.2.2 (#2416) * fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.22 (#2417) (forwarded request 1146478 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1145430
from
Jeff Kowalczyk (jfkw)
(revision 15)
- Update to version 3.67.5: * Refactor UnitHook to block the scan if finished metrics aren't handled (#2309) * skip community PR (forks) secret scans for now (#2401) * [feat] - buffered file writer metrics (#2395) * Update GitParse to handle quoted binary filenames (#2391) * Allow multiple domains for Forager (#2400) * prevent concurrent map writes (#2399) * Allow CLI version pinning in GHA (#2397) (#2398) * Set GHA workdir (#2393) * Fix handling of GitHub ratelimit information (#2041) * [feat] - use diff chan (#2387) * [not-fixup] - Reduce memory consumption for Buffered File Writer (#2377) * fix: case-insensitive ext check (#2383) * tightening opsgenie detection and verification (#2389) * Fix binary file hanging bug in git sources (#2388) * Disable GitHub wiki scanning by default (#2386) (forwarded request 1145429 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1144948
from
Jeff Kowalczyk (jfkw)
(revision 14)
- Update to version 3.67.4: * [feat] - use diff chan (#2387) * [not-fixup] - Reduce memory consumption for Buffered File Writer (#2377) * fix: case-insensitive ext check (#2383) * tightening opsgenie detection and verification (#2389) * Fix binary file hanging bug in git sources (#2388) * Disable GitHub wiki scanning by default (#2386) * [fixup] - correctly use the buffered file writer (#2373) * custom detector dogs (#2376) * use only the DetectorKey as a map field (#2374) * [feat] - concurently scan the filesystem source (#2364) * [chore] Cleanup GitLab source errors (#2345) * [bug] - use DetectorKey as the key in the detectorKeysWithResults map (#2366) * Add s3 credential validation (#2362) * Polite Verification (#2356) * Make AzureDevopsPersonalAccessToken verification more robust (#2359) * fix (#2360) * update azure test files to check rawV2 (#2353) * [chore] Add filesystem integration test (#2358) * Scan GitHub wikis #2233 * added flyio protos (#2357) * Allow for configuring the buffered file writer (#2319) * [feat] - tmp file diffs (#2306) * Fix filesystem enumeration ignore paths bug (#2355) * Detectors Updates 1 for Tristate Verification (#2187) * feat(detectors): update template (#2342) * Azure function key is throwing FPs (#2352) * Improve fp ignore logic (#2351) * added azuresearchquerykey detector (#2349) * added azuresearchadminkey detector (#2348) (forwarded request 1144854 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1144407
from
Jeff Kowalczyk (jfkw)
(revision 13)
- Update to version 3.67.2: * [fixup] - correctly use the buffered file writer (#2373) * custom detector dogs (#2376) * use only the DetectorKey as a map field (#2374) * [feat] - concurently scan the filesystem source (#2364) (forwarded request 1144376 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1143806
from
Jeff Kowalczyk (jfkw)
(revision 12)
- Update to version 3.67.1: * Add s3 credential validation (#2362) * [bug] - use DetectorKey as the key in the detectorKeysWithResults map (#2366) - Update to version 3.67.0: * [chore] Cleanup GitLab source errors (#2345) * [bug] - use DetectorKey as the key in the detectorKeysWithResults map (#2366) * Add s3 credential validation (#2362) * Polite Verification (#2356) * Make AzureDevopsPersonalAccessToken verification more robust (#2359) (forwarded request 1143756 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1143415
from
Jeff Kowalczyk (jfkw)
(revision 11)
- Update to version 3.66.3 * Allow for configuring the buffered file writer (#2319) * added flyio protos (#2357) * Scan GitHub wikis (#2233) * [chore] Add filesystem integration test (#2358) * update azure test files to check rawV2 (#2353) * [bug] fix script change (#2360) - Update to version 3.66.2: * fix (#2360) * update azure test files to check rawV2 (#2353) * [chore] Add filesystem integration test (#2358) * Scan GitHub wikis #2233 * added flyio protos (#2357) * Allow for configuring the buffered file writer (#2319) * [feat] - tmp file diffs (#2306) * Fix filesystem enumeration ignore paths bug (#2355) * Detectors Updates 1 for Tristate Verification (#2187) (forwarded request 1143193 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1142812
from
Jeff Kowalczyk (jfkw)
(revision 10)
- Update to version 3.66.1: * Azure function key is throwing FPs (#2352) - Update to version 3.66.0: * feat(detectors): update template (#2342) * Azure function key is throwing FPs (#2352) * Improve fp ignore logic (#2351) * added azuresearchquerykey detector (#2349) * added azuresearchadminkey detector (#2348) * added azurefunctionkey detector (#2337) * updates to plain and json printing to include verification error (#2335) (forwarded request 1142728 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1142090
from
Jeff Kowalczyk (jfkw)
(revision 9)
- Update to version 3.65.0: * Add the new MaxMind license key format (#2181) * Prevent print or logging in detectors (#2341) * make sure to close connections after testing (#2343) * Fix test (#2339) * add tri-state verification to yelp (#1736) * Improve GitHub scan logging (#2220) * Update DockerHub detector logic (#2266) * Add Google oauth2 token detector (#2274) - Update to version 3.64.0: * add priority semaphore (#2336) * updating doppler logic (#2329) * added azuredevopspersonalaccesstoken detector (#2315) * Walk directories in filesystem source enumeration (#2313) * [feat] - Replace regexp pkg w/ go-re2 in detectors (#2324) * Update Gitlab repo count in tests #2333 * Narrow Postgres detector to only look for URIs (#2314) * fixing incorrect acct num id for some aws keys (#2332) (forwarded request 1142057 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1141040
from
Jeff Kowalczyk (jfkw)
(revision 8)
- Update to version 3.63.11: * updating detector logic for zenscrape (#2316) * Add prometheus metrics to measure hook execution time (#2312) * [chore] - reduce test time (#2321) * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.0 (#2325) * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.0.4 (#2322) * fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.1 (#2320) * fix(deps): update golang.org/x/exp digest to 1b97071 (#2318) * [chore] - Update Chunk struct comment (#2317) * fix(deps): update module github.com/hashicorp/golang-lru to v2 (#2054) * save 8 bytes per chunk (#2310) (forwarded request 1141026 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1139780
from
Jeff Kowalczyk (jfkw)
(revision 7)
- Update to version 3.63.10: * [chore] - Add regex and keyword for api_org tokens (#2240) * Assume unauthenticated github scans have public visibility (#2308) * [fixup ] - Allow ssh cloning with AWS Code Commit (#2307) * added azure protos (#2304) * Disable recently added postgres detector because it it too sensitive (#2303) * [feat] - Provide CLI flag to only use custom verifiers (#2299) * Individuate archive tests #2293 * [feat] - Allow for the use of include/exclude path files for filesystem scans (#2297) * [chore] - small updates (#2288) * fix(deps): update module github.com/bradleyfalzon/ghinstallation/v2 to v2.9.0 (#2295) * fix(deps): update module github.com/aws/aws-sdk-go to v1.49.19 (#2294) * feat(installation): Implement checksum signature verification (#2157) * fix(deps): update module github.com/aws/aws-sdk-go to v1.49.18 (#2292) * fix(deps): update module cloud.google.com/go/storage to v1.36.0 (#2291) * chore(deps): update sigstore/cosign-installer action to v3.3.0 (#2290) * chore(deps): update alpine docker tag to v3.19 (#2287) * fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.19 (#2286) * Extend memory cache (#2275) * fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.3 (#2285) * fix(deps): update golang.org/x/exp digest to 0dcbfd6 (#2284) * fix(deps): update module github.com/azuread/microsoft-authentication-library-for-go to v1.2.1 (#2282) * adding postgres detector (#2108) * update test (#2283) * fix(deps): update golang.org/x/exp digest to be819d1 (#2281) * fix(signable): ignore common false positives (#2230) * fix(parseur): ignore false positives (#2229) * [chore] - update docs for pre-commit (#2280) * 1833 Fix syslog udp (#1835) * Wrap temp deletion err #2277 (forwarded request 1139765 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1135012
from
Jeff Kowalczyk (jfkw)
(revision 6)
- Update to version 3.63.7: * Use directory iterator instead of walkdir (#2260) * Add handlerOpts back (#2258) * Skip all binaries (#2256) * Add skip archive support (#2257) (forwarded request 1134935 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1134105
from
Jeff Kowalczyk (jfkw)
(revision 5)
- Update to version 3.63.5: * move cleanup to run (#2245) * Adds basic if/else check if pid slice is empty (#2244) * fix(deps): update module golang.org/x/crypto to v0.17.0 [security] (#2243) * add secretID to chunk (#2242) (forwarded request 1133955 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1133178
from
Jeff Kowalczyk (jfkw)
(revision 4)
- Update to version 3.63.3: * Bump github.com/docker/docker (#2213) * Update metabase verification to check for a valid JSON response (#2210) * [chore] Remove unnecessary string conversion in tefter detector (#2209) * fix and refactor browserstack detector (#2208) * Fix azurestorage detector (#2207) * [chore] Remove omitempty tags on JobProgressMetrics and UnitMetrics (#2204) * Add disk buffer tempfile cleanup (#2130) * Use bad json in slackwebhooks (#2193) * [bug] - close file after reading (#2203) * chore: propagate log context to handlers (#2191) * feat(privatekey): run checks concurrently (#2139) * [fixup] - skip files in the archive handler (#2195) * move logic to main Chunks method (#2194) * add metrics for gitlab (#2190) * [chore] - Refactor common code into a separate function (#2179) * Remove java archives from ignored extensions (#2188) * [chore] - Compile regex once (#2176) (forwarded request 1133151 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1131651
from
Jeff Kowalczyk (jfkw)
(revision 3)
- Update to version 3.63.2: * update regex (#2184) * Deprecate some detectors (#2186) * allow targets for the source manager (#2182) * use https for verification endpoints (#2185) * remove unnecessary Git cmd check (#2175) * [feat] - Remove go-git dependency (#2174) * Skip trying to determine MIME type for directories (#2178) * fixing how to rotate URL (#2183) * Use forked sevenzip (#2180) * [thog-1548] add auto redaction for verification errors (#2106) * fix(deps): update module github.com/google/go-github/v42 to v57 (#2172) * chore(deps): update google-github-actions/auth action to v2 (#2171) * skip files we can't scan (#2170) * fix(deps): update module google.golang.org/api to v0.152.0 (#2169) * [chore] - remove deprecated types (#2168) * fix(deps): update module golang.org/x/oauth2 to v0.15.0 (#2167) * fix(deps): update module github.com/aws/aws-sdk-go to v1.48.12 (#2166) * fix(deps): update module github.com/xanzy/go-gitlab to v0.94.0 (#2165) * fix(deps): update module github.com/trufflesecurity/disk-buffer-reader to v0.2.1 (#2163) * Ignore images and binaries (#2162) * [chore] - Increase pagination limit (#2154) * fix(deps): update module github.com/google/go-containerregistry to v0.17.0 (#2160) * update forager types (#2159) * fix(deps): update module github.com/go-logr/zapr to v1.3.0 (#2158) * fix(deps): update module github.com/fatih/color to v1.16.0 (#2155) * fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.0 (#2153) * fix(deps): update module github.com/aws/aws-sdk-go to v1.48.11 (#2152) * fix(deps): update module github.com/alecthomas/kingpin/v2 to v2.4.0 (#2151) * fix(deps): update module cloud.google.com/go/storage to v1.35.1 (#2150) (forwarded request 1131604 from ph03nix)
Ana Guerrero (anag+factory)
accepted
request 1129709
from
Jeff Kowalczyk (jfkw)
(revision 2)
- Update to version 3.63.1: (forwarded request 1129708 from jfkw)
Displaying revisions 41 - 60 of 61
