This repository has been archived by the owner on Dec 1, 2024. It is now read-only.
chore(deps): update pre-commit hook zricethezav/gitleaks to v8.21.2 #244
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
bdb4e98 to
17c27ff
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
17c27ff to
1a5df99
Compare
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v8.19.3->v8.21.2Note: The
pre-commitmanager in Renovate is not supported by thepre-commitmaintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.Release Notes
zricethezav/gitleaks (zricethezav/gitleaks)
v8.21.2Compare Source
Changelog
43fae35feat(rules): create Octopus Deploy api key (#1602)a158e4ffix(aws-access-token): only match if correct length (#1584)b6e0eeefix(config): ignore jquery/swagger w/o version (#1607)722e7d8feat: add new GitLab tokens (#1560)961f2e6feat(generic-api-key): tune false positives (#1606)e734fcfCreate .gitleaks.toml (#1605)7206d6bfeat(curl): tweak tps and fps (#1603)2db25f1feat(config): ignore swagger-ui assets (#1604)e97695bfeat(generic-api-key): exclude keywords (#1587)0afb525feat(okta): bump entropy to 4 (#1599)2068870feat: update global allowlist (#1597)8cf93b9refactor(allowlist): deduplicate commits & keywords (#1596)50c2818feat(config): ignore jquery static assets (#1595)455ae0aMore rule fixes (#1586)5407c44chore: log skipped symlinks (#1591)d03d6c4feat: match left side of identifier (#1585)851c11awhat secrets?8cfa6b2fix(rules): add entropy (#1580)9152eaafeat(aws): add entropy & allowlist (#1582)93acc6efeat(rules): add 1password token (#1583)83a5724feat(config): add curl header rule (#1576)v8.21.1Compare Source
Changelog
cf5334ffeat: add curl basic auth rule (#1575)d07b394Update spelling in README.md (#1574)5c03fa4refactor(allowlist): use iota for condition (#1569)12034a7refactor(config): temporarily switch to [rules.allowlist] (#1573)v8.21.0Compare Source
Changelog
aabe381Define multiple allowlists per rule (#1496)8ea6085build: upgrade gitleaks/go-gitdiff to v0.9.1 (#1559)be9d0f8Fix rule extension (#1556)9988e52Update base config allowlist (#1555)8fb39bafeat(azure): detect Azure AD client secrets (#1199)14c924dchore: match gitleaks.toml anywhere (#1553)respect @rgmz @9999years
v8.20.1Compare Source
Changelog
b2fbaebfeat(config): add placeholder regexes to global allowlist (#1547)00bb821feat: add PrivateAI rule (#1548)445abe3Bump golang verion used in docker build to match version specified in go.mod (#1551)1a2f656feat: add cohere rule (#1549)82d737dfeat(generate): generate global (#1546)f6e5499Feat/nuget config password rule (#1540)v8.20.0Compare Source
Changelog
bf8a49fMake private key check less greedy and include fifth dash (#1440)9c354f5print tags if they exist2278a2aDecode Base64 (#1488)c5b15c9refactor(config): keyword map (#1538)a971a32fix: use regexTarget for extend config (#1536)a0f2f46feat: bump go to 1.22 (#1537)4e8d7d3fix: handle pre-commit and staged (#1533)f8dcd83Bugfix/1352 incorrect report multiple lines (#1501)Huge huge thanks to @bplaxco for supporting b64 decoding, @recreator66 for bug fixes, and to @rgmz for his continued support of the project in the form of PRs and reviews. Thanks you!
New Feature: Decoding
Sometimes secrets are encoded in a way that can make them difficult to find
with just regex. Now you can tell gitleaks to automatically find and decode
encoded text. The flag
--max-decode-depthenables this feature (the defaultvalue "0" means the feature is disabled by default).
Recursive decoding is supported since decoded text can also contain encoded
text. The flag
--max-decode-depthsets the recursion limit. Recursion stopswhen there are no new segments of encoded text to decode, so setting a really
high max depth doesn't mean it will make that many passes. It will only make as
many as it needs to decode the text. Overall, decoding only minimally increases
scan times.
The findings for encoded text differ from normal findings in the following
ways:
include that as well
decoded:<encoding>anddecode-depth:<depth>Currently supported encodings:
base64(both standard and base64url)Configuration
📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.