trufflehog

mirror of https://github.com/trufflesecurity/trufflehog.git synced 2024-09-20 06:31:57 +00:00

Author	SHA1	Message	Date
Richard Gomez	11e5febeee	feat(git): scan commit metadata (#2754 ) This is a follow-up to #2713 that fixes the strange test error. As suspected, the failure was caused by additional diffs not being included in the test's expected data.	2024-04-29 16:58:45 -04:00
ahrav	0f122edc59	ignore pbix and vsdx files (#2762 )	2024-04-29 12:59:21 -07:00
mountcount	1d92655d97	pkg: fix function names in comment (#2761 ) Signed-off-by: mountcount <cuimoman@outlook.com>	2024-04-29 11:21:26 -05:00
ahrav	0df300c0ca	[chore] - add additional binary extension (#2760 ) * add rust binary extension * add additinal binary file extension for PyTorch serialized models	2024-04-29 08:08:00 -07:00
ahrav	5d3b90799e	[bug] - Fix the metric for buffered file writer writes (#2750 ) * avoid double counting * add disk write count back	2024-04-25 13:04:07 -07:00
ahrav	d89b0cdace	[bug] - fix buffer size metric (#2749 ) * fix metric * another fix	2024-04-25 11:43:38 -07:00
Miccah	fadf9c6286	[chore] Remove broken test (#2748 ) This wasn't actually testing the fix, which is more difficult to orchestrate than is worth. See: https://github.com/trufflesecurity/trufflehog/pull/2742	2024-04-25 11:27:17 -07:00
ahrav	b430dae83e	[refactor] - lazy buffer retrieval (#2745 ) * only create the contentWriter once * update test * Lazily fetch buffer from the pool * fix tests * fix test * remove ctx	2024-04-25 08:27:15 -07:00
ahrav	8d3404804e	[chore] - update buffered file writer metric (#2740 ) * missed one * add comment	2024-04-25 08:17:32 -07:00
ahrav	8ceeb5d5a1	[bug] - Refactor newDiff constructor to avoid double initialization of contentWriter (#2742 ) * only create the contentWriter once * update test * correclty use mock * remove deprecated pkg	2024-04-25 08:01:38 -07:00
Cody Rose	11452e8a57	Revert "feat(git): scan commit metadata (#2713 )" (#2747 ) This reverts commit `81a9c813a1`.	2024-04-25 10:56:48 -04:00
Cody Rose	ba5ad5d8a9	Fix SQL Server detector tests (#2716 ) These tests were broken so I fixed them and updated them to use testcontainers, which is more robust and used in the JDBC detector tests.	2024-04-25 10:40:46 -04:00
Richard Gomez	81a9c813a1	feat(git): scan commit metadata (#2713 ) This fixes #2683. It scans the commit author, committer (which is typically GitHub <noreply@github.com> for GitHub, but can be different), and message. It also scans Git notes.	2024-04-25 10:13:09 -04:00
ahrav	97599b19e7	update buffer metrics (#2737 )	2024-04-24 07:22:06 -07:00
ahrav	ea4d9d2d32	[bug] - Correctly return the checked out buffer to the pool (#2732 ) * Make sure to return the buffer to the pool * update comment * defer the return * remove anonymous function	2024-04-23 14:38:28 -07:00
Dustin Decker	0ce02fc827	Make connection issues less jarring (#2730 ) * Make connection issues less jarring * lint * fix lint issue * print just the connection issue in yellow * update terminology	2024-04-23 14:29:38 -07:00
ahrav	f03aa38726	[bug] - Fix disk write metric and update BufferedFileWriter file field (#2733 ) * Record the disk write after the file has been written to * remove comment * remove print logs	2024-04-23 14:13:13 -07:00
Cody Rose	af095c294c	Add false positive info to proto (#2729 ) This PR adds false positive information to the Result protobuf message in anticipation of us tracking it as first-class secret metadata. We're not doing that yet (it's blocked behind #2643) but setting up the messages now means we'll be able to do it later with less of a code delta.	2024-04-23 16:18:45 -04:00
ahrav	4a5fbf8417	[refactor] - Update Write method signature in contentWriter interface (#2721 ) * Update write method in contentWriter interface * fix lint	2024-04-23 08:47:53 -07:00
Dustin Decker	14e44db2be	Move detectors.IsKnownFalsePositive from the detectors and into the engine (#2643 ) * Remove detectors.IsKnownFalsePositive from detectors * Centralize false positive removal in engine * Don't apply fp filtering on custom regex to preserve previous behavior. * fix empty branch * update excludes * update filtering * Add result flag option and exclude some detectors	2024-04-22 15:18:04 -07:00
Ankush Goel	3fa86a1008	added onfleet api key detector (#2375 ) * added onfleet detector * use organization get endpoint --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2024-04-21 10:06:51 -07:00
Julien Doutre	32652a7498	Detect Slack workflows webhook (#2569 )	2024-04-19 07:21:40 -07:00
Luska	e5575cd6f2	Adding Pagarme API key detection (#2665 ) * Adding support to Pagarme API key detection * adding scanner --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2024-04-10 17:57:25 -07:00
ahrav	867434331b	[refactor] - template detector (#2692 ) * refactor template detector to only check for 200 status code * Replace ldap.DialTLS w/ ldap.DialURL since the former is deprecated * sort imports	2024-04-10 17:46:07 -07:00
fml09	c6b454e736	Remove unnecessary space in Vultr regex pattern (#2689 ) * Fix incorrect regular expression with missing closing bracket * Remove unnecessary space in Vultr regex pattern	2024-04-10 17:12:55 -07:00
Shreyas Sriram	08b6f90c81	Add Wiz detector (#2691 ) * Implement wiz detector * Fix tests * Update false positive logic	2024-04-10 08:19:36 -07:00
Cody Rose	b745cfd495	Enrich Gitlab enumeration logging (#2678 ) This PR modifies the GitLab source: * emits a new "groups enumerated" metric * logs more information about group enumeration * emits the repo enumeration metric inside getAllProjectRepos, which means it will work when units are flipped on * emits the repo enumeration metric more granularly	2024-04-08 10:47:05 -04:00
Cody Rose	14b1a6e236	Handle inactive Slack account tokens (#2668 ) This PR updates the Slack detector to accommodate a previously unhandled error type. It also fixes the exiting Slack tests.	2024-04-05 10:26:20 -04:00
ahrav	3cb7aedf4a	[bug] - Add ASCII validation check for base64 decoding (#2671 ) * Correclt handle invalid base64 with ascii check * remove parallel	2024-04-04 16:59:13 -07:00
redismongo	f1957fec59	chore: fix some typos (#2666 )	2024-04-04 05:50:47 -07:00
ahrav	a8132839f8	[chore] - update go-github dep manually (#2664 ) * update go-github dep * remove commented out line	2024-04-03 19:19:14 -07:00
ahrav	0fe39db56f	upgrade launchdarkly dep (#2650 )	2024-04-03 07:24:20 -07:00
Richard Gomez	d0d59c2e77	chore: remove duplicate jiratoken.v2 detector (#2657 )	2024-04-02 18:12:06 -07:00
kenzht	0d3023fe74	add GCP application default credentials detector (#2530 ) * add GCP application default credentials detector * add a comment * update Keywords to better match the key --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2024-04-01 11:27:40 -07:00
Shreyas Sriram	31ad1eed30	Add JupiterOne detector (#2446 ) * Add JupiterOne bootstrap * Implement verification logic * Cleanup * Fix verificationError * Undo unnecessary changes --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2024-03-29 19:14:04 -07:00
Richard Gomez	3b58a15a84	Fix GitHub enumeration & rate-limiting logic (#2625 ) This is a follow-up to #2379. It fixes the following issues: GitHub API calls missing rate-limit handling The fix for Refactor GitHub source #2379 (comment) inadvertently resulting in duplicate API calls	2024-03-29 10:29:46 -04:00
dylanTruffle	7fccb52b16	Fixing nitro check (#2631 ) * Fixing nitro check * remove dupe detector and disable Alconst --------- Co-authored-by: Dylan Ayrey <dylan@Dylans-MacBook-Pro.local> Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com> Co-authored-by: ahrav <ahravdutta02@gmail.com>	2024-03-27 11:39:58 -07:00
Dustin Decker	612ff1a0f1	Use Lstat to identify non-regular files in filesystem source (#2628 ) * Use Lstat to identify non-regular files in filesystem source * fix test	2024-03-26 15:22:42 -07:00
ahrav	369d79080e	[bugfix] - Update the Anthropic detector (#2629 ) * Update the Anthropic detector * update comment	2024-03-26 15:01:32 -07:00
fml09	9da396e237	Fix incorrect regular expression with missing closing bracket (#2616 )	2024-03-26 13:32:14 -05:00
ahrav	11afc3215b	[chore] - upgrade dep (#2618 ) * upgrade dep * remove dupe deps	2024-03-26 11:21:07 -07:00
Richard Gomez	95dc8d6e16	Fix additional GitHub test errors #2614	2024-03-26 09:34:12 -04:00
Richard Gomez	9d4cf87c02	fix(github): resolve panic & test failures (#2608 )	2024-03-22 09:49:01 -07:00
Ankush Goel	6dbe80806b	Dockerhub v2 detector (#2361 ) * Dockerhub v2 detector * update package structure --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-22 09:30:35 -07:00
Richard Gomez	441d9ff005	Update Snyk detector (#2559 ) * feat(snyk): add extradata from api * update test --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-22 09:14:48 -07:00
faktas2	72fb2b9deb	MaxMind detector uses the right endpoint (#2577 ) * MaxMind detector uses the right endpoint The endpoint that the current detector uses fails in validating the license key as some license keys do not have permissions to the geoip API. This commit is to make the detector use the right endpoint https://dev.maxmind.com/license-key-validation-api * Remove RawV2 * Remove trimspace and extra if branch * Add the proper tests * Use SetVerificationError * Add SetVerificationError * update tests --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-22 09:10:44 -07:00
Richard Gomez	baf7ea1458	feat(gitparse): avoid uneeded calls to strconv.Unquote (#2605 )	2024-03-22 08:35:10 -07:00
Richard Gomez	80e8a67c2d	Refactor GitHub source (#2379 ) * refactor(github): cleanup logic * fix(github): lookup wikis per-repo * refactor(github): change scanErrs.String output --------- Co-authored-by: Bill Rich <bill.rich@gmail.com>	2024-03-21 14:07:39 -07:00
Miccah	3a7266e540	[chore] Fix potential resource leak in postman source (#2606 ) This moves workspace unpacking to a helper function to leverage a defer, which ensures the file is always closed.	2024-03-21 10:21:13 -05:00
Zachary Rice	1216fa23c9	strings contain keyword check, add collection name to keywords (#2602 )	2024-03-21 09:35:38 -05:00

1 2 3 4 5 ...

2365 commits