chore(deps): update pre-commit hook gitleaks/gitleaks to v8.19.2 #808
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![red-hat-konflux[bot]](https://avatars.githubusercontent.com/in/296509?s=60&v=4){kind=small}
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com>
|
Can one of the admins verify this patch? |
lzap
approved these changes
Sep 18, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v8.16.1->v8.19.2Note: The
pre-commitmanager in Renovate is not supported by thepre-commitmaintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.Release Notes
gitleaks/gitleaks (gitleaks/gitleaks)
v8.19.2Compare Source
Changelog
128cd22fix(rule): comment out errant validation case (#1509)1a6d2b0remove validate config test temporarily0874ebcUpdate README.mdv8.19.1Compare Source
Changelog
9463ffafix flag access (#1506)v8.19.0Compare Source
Changelog
44ad62eDeprecatedetectandprotect. Addgit,dir,stdin(#1504) HEY THIS IS AN IMPORTANT CHANGE. If it breaks some stuff... sorry, I'll fix it asap, just open an issue and make sure to ping me. The change is meant to be backwards compatible.e93a7c0Update Harness rules to add _ and - in the account ID part. (#1503)4e43d11chore: fix gl workflow error (#1487)bd81872Make config generation utils public (#1480)3be7faaUpdate Hashicorp Vault token pattern (#1483)1aae66dfeat(config): update rule validation (#1466)6dfcf5eUpdate .gitleaksignoref361c5efix(detect): handle EOF with bytes (#1472)8a1ca9eAdded poetry.lock to default allowlist paths (#1474)525c4b4refactor(sarif): remove |name| and change |shortDescription| (#1473)c0fda43Use rule id for config validation error (#1463)d3c4b90Use first non-empty group ifsecretGroupisn't set (#1459)b4009bfchore: remove unnecessary capture groups (#1460)80bd177Return non-0 exit code fromDetectGit(#1461)0334ec1add gradle verification-metadata.xml to global allowlist (#1446)c1345e1feat(openshift): add user token (#1449)7697b3e(feat): Adding secret detection rule for Kubernetes secrets (#1454)26f3469add version to defaultbc979deAdd go.work and go.work.sum to global allowlist (#1353)b899915Add harness PAT and SAT rules (#1406)4c5195bUpdate README.mdv8.18.4Compare Source
Changelog
02808f4Limit hashicorp-tf-password to .tf/.hcl files (#1420)07e1c30rm printdb63fc1reduce telegram... todo url and xml for later9a4538ccoderabbit.ai <3fe94ef9Add NewRelic insert key detection (#1417)bb4424dImproved Telegram bot token rule regex and added more test cases (#1404)575e923Add intra42 client secret (#1408)Shout out to @coderabbit for their sponsorship!
v8.18.3Compare Source
Changelog
39947b0extend FB access token discovery (#1407)79cac73tests: scalingo validation consistent test (#1359)247f423add real (test) standard and restricted keys (#1375)821b232Add Cloudflare API and Origin CA keys (#1374)57ac4b3Update "contributing guidelines" link (#1390)db69e82add update token from square (#1370)4b54328feat: facebook secret, access token, and page access token rules (#1372)979f213update mailchimp with new tokens (#1376)59c0cc7Append ordered rules when extending (#1304)6c52f87fix: age rule id with dashes (#1349)247a5e7patching golang.org/x/text for CVE-2021-38561 and CVE-2022-32149 (#1342)8d23afdUse latest base images. (#1334)v8.18.2Compare Source
Changelog
ac4b514removed gitleaks user from Dockerfile (#1313)76c9e31Remove IAM identifiers for non-credential resources in the aws-access-token rule (#1307)afe046bUpdate stripe rule to not alert on publishable keys (#1320)8b8920d--max-target-megabytes flag now supported for --no-git flag as well (#1330)a59289cadd pre-commit hook gitleaks-system (#1225)870194bfix errors when using protect and an external git diff tool (#1318)179c607rename filesystem to directory (#1317)8de8938Enhance Secret Descriptions (#1300)ca7aa14Small refactordetectandsources(#1297)01e60c8chore(config): refactor to go generate; simplify configRules init (#1295)54f5f04forgot symlinks221d5c4pretty apparent 'protect' and 'detect' should be merged into one command (#1294)128b50fstyle: sort the stopwords (#1289)v8.18.1Compare Source
Changelog
dab7d02dont crash on 100gb files pls (#1292)e63b657remove secretgroup from default config (#1288)20fcf50feat: Hashicorp Terraform fields for password (#1237)b496677perf: avoid allocations with(*regexp.Regexp).MatchString(#1283)a3ab4e8refactor: more explicit rules (#1280)bd9a25abugfix: reduce false positives for stripe tokens by using word boundaries in regex (#1278)6d0d8b5add Infracost API rule (#1273)2959fc0refactor: simplify test asserts (#1271)d37b38fUpdate Makefile14b1ca9refactor: change detect tests to t.Fatal instead of log.Fatal (#1270)d9f86d6feat(rules): Add detection for Scalingo API Token (#1262)ed34259feat(jwt): detect base64-encoded tokens (#1256)0d5e46ffeat: add --ignore-gitleaks-allow cmd flag (#1260)a82ac29switch out libs (#1259)0b84afafix: no-color option should also affect zerolog output (#1242)8976539Fixed lineEnd indexing if the match is the whole line (#1223)30c6117feat: Add optional redaction value, default 100 (#1229)e9135cffix(jwt): longer segment lengths (#1214)f65f915Added yarn.lock file to default allowlist paths (#1258)abfd0f3Update README.md18283bbfeat(rules): make case insensitivity optional (#1215)9fb36b2feat(rules): detect Hugging Face access tokens (#1204)db4bc0fResolve #1170 - Enable selection of a single rule (#1183)3cbcda2Update authress.go to include alternate form account dash (-) (#1224)46c6272refactor: remove unnecessary removing temp files in tests (#1255)963a697refactor: use os.ReadFile instead of os.Open + io.ReadAll (#1254)163ec21fix(sumologic): improve patterns (#1218)v8.18.0Compare Source
What's Changed
New Contributors
Full Changelog: gitleaks/gitleaks@v8.17.0...v8.18.0
v8.17.0Compare Source
What's Changed
REDACTEDto stopwords forgeneric-api-keyrule by @9999years in https://github.com/gitleaks/gitleaks/pull/1188.gitleaksignorefingerprint lacks SHA by @rgmz in https://github.com/gitleaks/gitleaks/pull/1156--log-optsvalues by @rgmz in https://github.com/gitleaks/gitleaks/pull/1160New Contributors
Full Changelog: gitleaks/gitleaks@v8.16.4...v8.17.0
v8.16.4Compare Source
Changelog
6f75511Added option to specify .gitleaksignore path (#1179) @pacorreia190ac97Fix closing file in writeJson and writeSarif (#1187) @alexandear6dbb0c5Simplify tests by using T.TempDir (#1186) @alexandear6705461Fix typos in *.md, comments and logs (#1185) @alexandear9869eabUpdate README.md16f1ec0Update bug_report.md8d80a5aAdding discord channel to readme146f69e🐛 fix(sarif): update report to pass validator (#1167) @DariuszPorowskiv8.16.3Compare Source
Changelog
51ca0f8fix(detect): extra secret from group before checking allowlist (#1152)81cf308Fix G307 warning: Deferring unsafe method "Close" on type "*os.File" (#1154)bd8b145fix(detect): avoid panic with verbose flag (#1143)839f114Fix typo (#1142)63c3076No color (#1136)56079dcsafer out of bounds (#1135)9c6650dAdd Authress access key format: https://authress.io/knowledge-base/docs/authorization/service-clients/secrets-scanning/ (#1131)6fa63f4Update pre-commit address and rev tag in README (#1125)9701bf1Bufix/1100 protect stagged files (#1121)db79d81fix README.md !? (#1123)8a31f4aImprove rule descriptions for Stripe and Facebook access tokens (#1119)6b0c303Add Defined Networking API Tokens (#1096)Huuuuuge thank you to all the contributors especially @rgmz
@edwardwang888 @wparad @sadikkuzu @RafaelFigueiredo @fgreinacher @jasikpark @sergiomarotco
v8.16.2Compare Source
Changelog
63c3076No color (#1136)56079dcsafer out of bounds (#1135) (Thank you @agmond)9c6650dAdd Authress access key format: https://authress.io/knowledge-base/docs/authorization/service-clients/secrets-scanning/ (#1131)6fa63f4Update pre-commit address and rev tag in README (#1125)9701bf1Bufix/1100 protect stagged files (#1121)a5b9c24remove extra default on source optiondb79d81fix README.md !? (#1123)8a31f4aImprove rule descriptions for Stripe and Facebook access tokens (#1119)6b0c303Add Defined Networking API Tokens (#1096)Thanks to @americanair for sponsoring this open source project!
Thanks to all the contributors this release: @fgreinacher @wparad @RafaelFigueiredo @sergiomarotco @jasikpark
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.