Navigation:
Browse pkgsrc
(this page) 2023-01-11 18:28:38 by Benny Siegert | Files touched by this commit (123) |  |
Log message: Revbump all Go packages after go119 update |
| 2023-01-10 22:35:36 by Leonardo Taccari | Files touched by this commit (4) |
Log message: trufflehog: Update to 3.24.0 Changes: v3.24.0 ## What's Changed * Switch to retryableHttpClient for GitHub AuthN API Client + More Logs * Bump dependencies * Handle invalid regex for custom detector. * Capture callstack of canceled contexts * Validate custom regular expressions on detector initialization v3.23.2 ## What's Changed * Bump dependencies v3.23.1 ## What's Changed * Allow for default value to be used in GHA Workflow v3.23.0 ## What's Changed * Add Circle CI source v3.22.0 ## What's Changed * Remove ctx from source structs * Removing Debug version Println to logrus debug * Make GA action default base an empty string v3.21.1 (No changes) v3.21.0 ## What's Changed * Add configuration parsing and custom detectors to engine * Add custom regex detector docs * Remove custom log leveler * Bump dependencies v3.20.0 ## What's Changed * Bump dependencies * [bug] - Handle error when scanning s3 bucket * Add more logging for git sources * Add s3 object count to trace logs * Implement CustomRegex detector * Use Todoist's REST API v2 * Allow using a glob for include list v3.19.0 ## What's Changed * Add newlines when file is split * Close files to clean up tmp files * Use new diskbufferreader version * Add test for configuring custom regex with webhook verification * Add CustomRegex validation * Don't scan the --since-commit target * Only scan an org and org related repos with --org flag * Support globbing with ignore repos v3.18.0 ## What's Changed * Add `--exclude-paths` support for gitlab scanning module * Log the stack trace and recover object * ed25519 private keys not detected * Add warning about using trufflehog as a library * Enable skipping of particular key IDs * add LDAP detector * Fix error message * Skip some FTP FPs * add rambbitmq detector * Update slack webhook detector string check * Add custom detectors configuration parsing * S3 scanner improvements v3.17.0 ## What's Changed * fixed mailchimp detector * Update Scrapfly API Key Format * Replace plain decoder with utf8 v3.16.4 ## What's Changed * Add sqlserver integration test and some default params * Check for closed channel in HandleFile * add option to skip tls verification for confluence * Add Unknown visibility level * Adding Shopify detector v3.16.3 ## What's Changed * Do local URI verification, while attempting to defuse SSRF v3.16.2 ## What's Changed * Bump dependencies v3.16.1 ## What's Changed * Add bytes counter to scans * Support common ssh repo format v3.16.0 ## What's Changed * proposal: SqlServer connection string detector * support github fine grained tokens and add extra data * only detect live env razor pay and use std lib * improve fastly validation endpoint and add extra data * increase datadog token sensitivity * increase digitalocean token sensitivity v3.15.1 ## What's Changed * Use line aware chunking for git v3.15.0 ## What's Changed * Ignore URIs where the password is redacted * Add ignore repo list to Github proto * added npm detector * Ignore Bitbucket and Gitlab repos * Check rate limit when getting github user v3.14.0 ## What's Changed * Include public/private in github metadata * Do not fail scanning if we cannot enumerate gists * Add token auth to JIRA proto * Added DigitalOceanV2 detector * Add SSH config option for the git source v3.13.0 ## What's Changed * Add Gemini detector * Show clone path for git repos * 403 on listing user gist should not fail org scan v3.12.1 ## What's Changed * Recover from detector panics * Browserstack regex v3.12.0 ## What's Changed * Adding detector for Nvidia NGC * Implement JDBC verification for select drivers * Fix improper github org member pagination v3.11.1 ## What's Changed * Fix scanning specific github repos with token v3.11.0 ## What's Changed * A few improvements v3.10.4 ## What's Changed * fix regex pattern for confluent detector * Add AWS account information * Improve GitHub debug logging * Add support for MongoDB detector * Add SlackRealtime proto message * Add location to Slack and Confluence metadata |
| 2022-12-08 17:14:27 by Benny Siegert | Files touched by this commit (122) | |
Log message: Revbump all Go packages after go119 security update |
| 2022-11-02 20:39:58 by Benny Siegert | Files touched by this commit (115) | |
Log message: Revbump all Go packages after go119 security update |
| 2022-10-05 13:33:09 by Benny Siegert | Files touched by this commit (113) | |
Log message: Revbump all Go packages after go119 security update |
| 2022-09-26 20:40:24 by Benny Siegert | Files touched by this commit (113) |
Log message: Revbump all Go packages after 1.19 became default |
| 2022-09-17 13:03:57 by Leonardo Taccari | Files touched by this commit (3) |
Log message: trufflehog: Update to 3.10.3 Changes: 3.10.3 ------ - Use gitparse for unstaged changes. |
| 2022-09-07 11:32:31 by Benny Siegert | Files touched by this commit (114) | |
Log message: Revbump all Go packages after go118 security update |
| 2022-09-02 21:28:16 by Leonardo Taccari | Files touched by this commit (4) |
Log message:
trufflehog: Update to 3.10.2
Changes:
v3.10.2
-------
What's Changed
* Split parsing from reader
* Fix Honeycomb detector with older key format
* clean up detectors
v3.10.1
-------
What's Changed
* added new detectors
* Enhancement in Gitlab detector
* fix and make_protos
* [OC-71] - Add helper methods to context to set metatada token values for
the API
* fix issue in codacy
* Fix okta detector
v3.10.0
-------
What's Changed
* Allow secrets to be passed as env vars
* Import 27 new detectors
* [THOG-643] Implement independent log level controls
* Add common sentry recover library and add into goroutines
* added new detectors
v3.9.0
------
What's Changed
* Add Honeycomb detector
* Feature/scalr detector
* added websitepulse detector
* added tokeet detector
* Feature/salesmate detector
* added kanbantool detector
* added demio detector
* added heatmapapi detector
* added getresponse detector
* added codeclimate detector
* added flightlabs detector
* added prodpad detector
* added lemlist detector
* added formsite detector
* added docparser detector
* added parseur detector
* Added ecostruxureit detector
* Added transferwise detector
* Added holistic detector
* Added twist detector
* Added monkeylearn detector
* Added gtmetrix detector
* Added duply detector
* Added braintreepayments detector
* added apilayer scanner
* added appointed scanner
* [bug] - Fix the starting index value for plus line check.
v3.8.0
------
What's Changed
* Support scanning binary files in git sources
* Add the slack client token to the slack tokens proto
* Added support for SSH URIs
* Use file handler and common chunker
* Add ssh:// URI to docs
v3.7.3
------
* AWS detector should detect with leading '+'
* Add hash v2 to results proto.
|
| 2022-08-12 22:38:12 by Benny Siegert | Files touched by this commit (114) | |
Log message: Revbump all Go packages after go118 security update |
New packages: