Commit graph

94 commits

Author SHA1 Message Date
Hon
f52d8e872d
Add huggingface tui config (#3060)
* add huggingface tui config

* update readme

* undo auto format
2024-09-03 12:54:39 -07:00
Miccah
8b37ae11ca
[analyze] Add basic section to README (#3190) 2024-08-07 07:26:01 -07:00
joeleonjr
4498c4be7c
Update README.md (#3160) 2024-08-02 14:18:36 -07:00
joeleonjr
9ad24f6999
Update README.md (#3019) 2024-06-27 13:46:21 -05:00
joeleonjr
01a1499600
New Source: HuggingFace (#3000)
* initial spike on hf

* added in user and org enum

* adding huggingface source

* updated with lint suggestions

* updated readme

* addressing resources that require org approval to access

* removing unneeded code

* updating with new error msg for 403

* deleted unused code + added resource check in main
2024-06-27 13:22:06 -04:00
Dustin Decker
ef410873f2
Add Jenkins scanning (#2892)
* add jenkins

* whoops

* adding unauthenticated jenkins scanning

* update docs

---------

Co-authored-by: Joe Leon <joe.leon@trufflesec.com>
2024-06-04 07:13:14 -04:00
Carles Llobet
1ac558ae90
Adding postman to sub-commands list (#2813)
* Adding postman to sub-commands list

postman was made public so it can now be added to the sub-command list for completeness.

* Update README.md

---------

Co-authored-by: Dustin Decker <humanatcomputer@gmail.com>
2024-05-16 14:24:03 -07:00
Sam Chan
c13b1e53bf
Fixed the Now Scanning emoji (#2842) 2024-05-13 14:36:23 -07:00
Dustin Decker
9d4eb9516f
Update postman flags to be less confusing (#2755)
* Update postman flags to be less confusing

* Update readme

* fmt
2024-05-10 12:30:08 -05:00
Sam Chan
6c37313bc9
Updating Enterprise Readme Link from Contact to Product Info Page (#2804)
* updated link

* updated enterprise emoji
2024-05-07 21:06:37 -04:00
Sam Chan
4c7e8da9fb
Moved up enterprise section and added additional integrations (#2803) 2024-05-07 17:51:39 -06:00
Jacinto27
ccd1910112
Update README.md with Windows-specific Docker installation instructions (#2674)
* Update README.md with Windows-specific Docker installation instructions:
-Windows Command Prompt
-Windows PowerShell

Also:
    -Organized all the installation commands into separate sections for easy readability
    -Grouped the Docker intallation commands together

* Update README.md

Re-edited the files because they made the readme very cluttered.

* Update README.md

* Edited the powershell command

Realized the windows powershell command was too verbose, found a better command that is also compatible with Unix systems

* Update README.md

Just noticed I missed the -IT flag, removed it while debugging but didn't put it back, all as back to normal.
2024-04-08 17:45:54 -07:00
RoseSecurity
6d444f078d
Add GitLab CI Pipeline Example in Documentation (#2601) 2024-04-02 09:10:51 -07:00
Zachary Rice
20dd450e0b
make postman source public (#2635) 2024-03-27 15:25:55 -05:00
Miccah
931a28a537
[chore] Replace "Trufflehog" with "TruffleHog" (#2584) 2024-03-18 11:01:25 -07:00
Richard Gomez
f5025fd382
Add --results flag (#2372)
This is a follow-up to #2107 and #2335. It adds a new (hidden) --results flag that allows a user to show any combination of verified, unverified, and indeterminate secrets.
2024-03-15 10:19:31 -04:00
James Golovich
f0397fed8f
Fix minor typo (#2527) 2024-02-28 16:12:29 -08:00
Dustin Decker
d53b83b58e
Identify some canary tokens without detonation (#2500)
* Identify canary tokens

* Update README.md

* Update README.md

---------

Co-authored-by: dylanTruffle <52866392+dylanTruffle@users.noreply.github.com>
2024-02-21 09:42:21 -08:00
Zachary Rice
794f2bc179
Update custom detector example (#2435) 2024-02-13 08:41:13 -06:00
Zachary Rice
186cacc26d
Update brew install instructions (#2404) 2024-02-09 11:08:33 -06:00
Dylan Ayrey
905b7c3a01
custom detector dogs (#2376) 2024-02-05 09:57:52 -08:00
Shubham Hibare
f37f2eff68
feat(installation): Implement checksum signature verification (#2157)
* feat(installation): Implement checksum signature verification

* Add cosign notes

* Use vars

* use var
2024-01-11 11:56:21 -08:00
ahrav
b2c0d50ba8
[chore] - update docs for pre-commit (#2280)
* update docs for pre-commit

* fix spacing
2024-01-09 15:41:27 -08:00
joeleonjr
a6364415e6
shallow cloning + GitHub Action (#2138)
* proposed shallow cloning gh action

* removing unnecessary steps

* adding back in git checkout

* removed git cloning + added backward compatibility
2023-12-19 14:56:55 -05:00
Richard Gomez
07d9d1c5ef
Fix emoji in README (#2217) 2023-12-14 07:37:58 -08:00
joeleonjr
1759f093d1
added ci scanning info to readme (#2126)
* added ci scanning info to readme

* updates to ci details
2023-11-28 10:10:21 -05:00
ahrav
a7a9e18754
[chore] - update readme help flags (#2120)
* update readme help flags

* update
2023-11-21 16:14:20 -08:00
Shubham Hibare
11df3dc747
feat(signing): Sign checksum (#1894)
* Add checksum signing

* Update readme
2023-11-21 14:02:28 -08:00
Dustin Decker
05fae156e1
Add TravisCI source (#1877)
* Add TravisCI source

* update test to use sourcestest

* Remove jobPage loop

ListByBuild does not support pagination, so this was infinitely
repeating. https://developer.travis-ci.com/resource/jobs#find

* Continue chunking on error

* review updates

* update readme

---------

Co-authored-by: Miccah Castorina <m.castorina93@gmail.com>
2023-10-30 07:28:25 -07:00
Gabriel Donadel Dall'Agnol
efa1b84478
Fix README.md typo (#1942) 2023-10-22 13:32:35 -07:00
Karthik Sundari
b9a582ba51
chore(ReadMe): Update installation Doc (#1818) 2023-09-28 12:38:27 -05:00
joeleonjr
699547b7d3
consolidated pr and issue descr/comment flags (#1827) 2023-09-27 15:54:02 -04:00
joeleonjr
1e42dae734
added PR and Issue body scanning (#1816)
* added PR and Issue body scanning; adjusted CLI args to fit

* removed print statement from debugging

* removed exclude-commits; adjusted CLI flags

* minor changes to match main branch

* fixing logic

* updating README for --issues and --prs
2023-09-26 12:25:48 -04:00
Shubham Hibare
b71ea27a69
Implement an installation script with CheckSum Validation (#1808)
* Add installation script

* Update README.md

* Change set -e to set -o errexit

* Remove non-required dir  existence test

* Switch && to ||
2023-09-25 12:48:23 -07:00
Zachary Rice
d1b1ac408e
Expired invite link fix (#1713) 2023-08-28 14:21:13 -05:00
Mike Vanbuskirk
64dd49f9ce
add role assumption for s3 source (#1477)
* add role assumption for s3 source

* refactor role assumption to repeatable string

user can pass array of roles to assume

* refactor s3 chunks to handle passed roleARNs

* add role-session name

use timestamp to make dynamic

* add docstring for rolearn strings()

* make sure role ars are passed into source

* refactor role assumption functionality

break s3 bucket scanning into sep. function

* add log check on assume role

* fix role iteration

- Make sure s3 struct is populated with roles
- add separate new client instantiation for role-based access
- iterates through each role

* add comment

* protobuf revert for merge

* re-run make proto

* lint cleanup

* cleanup TODOs

* drop redundant switch case in assumerole client

* use less verbose 'ctx' designator

* breakout functionality from Chunks

- separate functions for:
- enumerating buckets to scan
- scanning objects within the buckets

* remake protobuf defs

* allow scan to continue on single bucket err

* add readme docs

* minor fixups
2023-08-17 20:30:20 -04:00
Savely Krasovsky
d062834997
initial support for bare repositories (#1499)
* feat: initial support for bare repositories

* feat: use concatenation instead of formatting and os.Getenv instead of os.Environ

Signed-off-by: Savely Krasovsky <savely@krasovs.ky>

* fix: go-git update with pre-receive hooks fix

Signed-off-by: Savely Krasovsky <savely@krasovs.ky>

* fix: remove info about pre-receive hook from README.md for now

Signed-off-by: Savely Krasovsky <savely@krasovs.ky>

* fix: don't scan staged while using --bare option, fixes to make it work with the latest master

Signed-off-by: Savely Krasovsky <savely@krasovs.ky>

* fix: small refactor according to #1518

Signed-off-by: Savely Krasovsky <savely@krasovs.ky>

---------

Signed-off-by: Savely Krasovsky <savely@krasovs.ky>
2023-08-03 11:23:41 -05:00
Zachary Rice
3c79b6b133
Remove CI Badge (#1590) 2023-08-01 13:45:46 -05:00
Zachary Rice
18a70b64bb
Introduce trufflehog:ignore tag feature (#1433)
* init ignore

* cleanup and add test

* update readme
2023-06-29 08:45:56 -05:00
Dustin Decker
e856a6890d
🎉 Add Docker image scanning 🎉 (#1412)
* Add Docker source

* Add metrics

* Add test

* Add debugging, address PR comments, fix path output

* review suggestions
2023-06-22 08:02:25 -07:00
dillonstreator
648ef3b52c
fix spelling errors (#1413) 2023-06-21 07:15:28 -07:00
Zachary Rice
e9cce62faf
update discord invite link to one that doesn't expire (#1410) 2023-06-20 12:29:40 -05:00
Zachary Rice
4ba0ad480f
Add message for discord server in readme (#1344)
* discord server

* Update README.md
2023-05-19 11:14:50 -05:00
Dustin Decker
58222610ff
readme improvements (#1234)
* readme improvements

* Add logos

* simplify points

* update headings and order

* fix heading sizes
2023-04-03 10:29:57 -07:00
Dylan Ayrey
2f61e4f5aa
Update README.md 2023-03-09 08:18:49 -08:00
ahrav
cbf299aa77
Add gcs scanning integration (#1153)
* Setup for GCS scanning.

* Update GCS engine w/ projectID req.

* Add concurrency field to gcsManager.

* add errgroup to gcsManager.

* Update gcs manager.

* Use defautl ADC.

* use ADC.'

* Add TOOD.

* add log to iterator completion.

* use a BinaryReader instead of concrete object for channel type.

* initial test for Chunks.

* Add tests for chunking objects.

* Add concurrency.

* update metadata to include content type and acls.

* Add object reading code.

* Add integration test.

* Add entrypoint.

* Add removed wg.Wait().

* remove dead code.

* remove build.

* Remove period from file extension.

* remove used.

* Add comment.

* Setup for GCS scanning.

* Update GCS engine w/ projectID req.

* Add concurrency field to gcsManager.

* add errgroup to gcsManager.

* Update gcs manager.

* Use defautl ADC.

* use ADC.'

* Add TOOD.

* add log to iterator completion.

* use a BinaryReader instead of concrete object for channel type.

* initial test for Chunks.

* Add tests for chunking objects.

* Add concurrency.

* update metadata to include content type and acls.

* Add object reading code.

* Add integration test.

* Add entrypoint.

* Add removed wg.Wait().

* remove dead code.

* remove build.

* remove used.

* Add file type for objects.

* Add check for file type and size.

* Add default file size.

* Add additinoal auth options and remaining CLI flags.

* Handle errors in go routines.

* Handle resuming for buckets.

* Remove redundant words in comment.

* remove ok check on bool check.

* remove extra blank line.

* Add return if handler handles chunk.

* Add comment.

* remove extra blank line.

* cleanup comment.

* Add comment.

* move up fxn.

* go mod tidy.

* Add exclusion to perf testing buckets.

* Handle blocking the channel.

* remove unused const.

* fix tests.

* fix tests.

* Handle gcs manger options better.

* update fxn name.

* Remove arg name.

* ignore buckets in gcsManager test.

* fix test.

* propulate gsManagerOpts.

* inline err check.

* Add readme.

* update readme spelling.

* fix test.
2023-03-07 17:32:04 -08:00
Yassine Ilmi
0cf9139df6
Disable profiler in debug mode and add profile switch (#1136) 2023-02-28 12:49:54 -08:00
Miccah
7373954ddf
[chore] Update docs for individual file scanning (#1132) 2023-02-27 21:03:19 -06:00
Alex Shylo
6e58eb4bbb
fix-the-typo (#1046)
change programatic -> programmatic
Ref: https://www.dictionary.com/browse/programmatic
2023-01-26 12:53:46 -08:00
Miccah
539be34752
Add openssh-client to trufflehog container (#1045)
* Add openssh-client to docker container

* Add ssh auth example and --rm to all docker run commands
2023-01-26 11:26:03 -06:00