Mirrors/trufflehog
2
0
Fork 0
mirror of https://github.com/trufflesecurity/trufflehog.git synced 2024-09-21 07:01:56 +00:00
Code Issues Projects Releases Packages Wiki Activity
1630 commits 123 branches 240 tags 83 MiB
Commit graph

1630 commits

This branch
This branch
All branches
Author SHA1 Message Date
Dustin Decker
db7045acb1
Update go-gitdiff dependency to fix hanging issue (#632) 2022-06-24 14:11:35 -07:00
Dustin Decker
85ed11519f
fix npd for incompatible sources on json legacy output (#623) 2022-06-21 09:50:55 -07:00
trufflesteeeve
d1a81afbb5
Only include one result per AWS Key ID, preferably verified (#619) 
Also ignore unverified results that match hashes, because they are
probably just hashes.
 2022-06-17 16:22:36 -04:00
trufflesteeeve
e793f4a5e6
Properly count the number of repos after a github scan resume (#625) 2022-06-17 16:21:22 -04:00
trufflesteeeve
10f4d02c31
Allow gitlab to resume from encoded resume info (#611) 2022-06-17 11:45:17 -04:00
Dustin Decker
ffacaa1816 replace dependency with patched version 2022-06-14 21:17:26 -07:00
Dustin Decker
2527ee26e6 improve zombie fix 2022-06-14 20:21:39 -07:00
Dustin Decker
423040f80b upgrade dependency 2022-06-13 23:48:22 -07:00
Dustin Decker
2f006f5590 fix dockerfiles 2022-06-13 19:45:24 -07:00
Dustin Decker
0570e0fea4 bump dependency 2022-06-13 18:56:22 -07:00
Dustin Decker
2178f1f42e reword and fix error logging 2022-06-13 16:14:22 -07:00
trufflesteeeve
e123e9f177
Cleanup individual repositories after scanning (#614) 2022-06-10 14:00:50 -04:00
Dustin Decker
9bcddbc45a
Change GHE org enum to use since ID instead of pages (#618) 
* Change GHE org enum to use since ID instead of pages

* fix logging
 2022-06-09 15:09:13 -07:00
trufflesteeeve
26bf1664eb
Move aws detector back to ID checking against secrets, make ID the redacted secret (#617) 2022-06-09 15:06:08 -07:00
Dustin Decker
8051b03bbf
improve debug logging for GHE enum (#615) 2022-06-08 13:56:07 -07:00
Dustin Decker
1a12a25f4d
Enumerate all visible orgs in GHE (#612) 2022-06-07 09:24:31 -07:00
Dustin Decker
e3bbf293e2
Fix NPD on mutex (#609) 
* Fix NPD on mutex

* fix test
 2022-06-06 17:20:27 -07:00
Miccah
9074006695
Fix bug in GitHub unit test mocking (#608) 2022-06-06 16:58:34 -07:00
dependabot[bot]
56c8717e2f
Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 (#606) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.1 to 1.7.2.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.1...v1.7.2)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-06 15:19:47 -07:00
trufflesteeeve
fd79a367f1
Allow github to resume from encoded resume info (#601) 2022-06-06 12:08:57 -04:00
ahrav
59fc54b94a
[Thog-441] create public event monitoring source (#599) 
* Add source for public event monitoring.

* Update protos.

* Add source for public event monitoring.

* Update metadata.

* Update proto.

* Update proto.

* Update pb files.
 2022-06-03 14:46:31 -07:00
Miccah
fc18a5ae0c
Bug fix and add authentication in shallow clone (#595) 2022-05-31 20:45:28 -05:00
Miccah
d7d5db9e78
Replace AccessToken protobuf with a simpler string type (#594) 2022-05-31 14:28:07 -05:00
Dustin Decker
c52545a0d3
Increase default timeout for SaneHttpClient, but fail early. (#587) 
* Increase default timeout for SaneHttpClient, but fail early.

* Don't change default for client with timeout
 2022-05-26 11:08:38 -07:00
ahrav
143fa333f3
[THOG-403] Fix var naming. (#586) 
* remove profililing.

* rename uri to URI.

* change var declaration.
 2022-05-25 15:23:20 -07:00
Dustin Decker
43955b9a38
Use GetCallerIdentity for AWS verification (#585) 2022-05-25 14:45:28 -07:00
Max Thomson
d98833b70b
README Total Detectors badge & small improvements (#584) 
* Add Total Detectors badge to README

* A few README quality of life updates
 2022-05-25 11:53:40 -07:00
Miccah
6fa2171a22
Refactor Engine to wait for workers in a Finish method (#581) 
* Refactor Engine to wait for workers in a Finish method

This should allow the engine to run multiple concurrent scans if
desired before shutting down.

Additionally, this commit refactors some of the printing logic to the
output package.

* Fix tests
 2022-05-25 11:35:44 -05:00
Dustin Decker
aff07927ea
Update README.md (#582) 2022-05-25 08:39:46 -07:00
Miccah
67ad2f2247
Shallow clone if --since-commit is provided (#564) 
* Shallow clone if --since-commit is provided

* Set the user before constructing args

* Fix vbout detector

* Address PR comments

* Use a better name for timestamp
* Use net.URL.String method for the remote path
 2022-05-24 10:49:03 -05:00
Dustin Decker
ad92c6ecd9 tidy up dependencies 2022-05-24 05:11:27 -07:00
roxanne-tampus
80c6579226
Updated aws detector (#579) 2022-05-24 05:07:54 -07:00
dependabot[bot]
77de8f1e5c
Bump github.com/aws/aws-sdk-go from 1.44.9 to 1.44.20 (#576) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.9 to 1.44.20.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.9...v1.44.20)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-24 04:59:20 -07:00
Dustin Decker
0eac3be94c ci improvements 2022-05-23 21:13:32 -07:00
Marlon
cd8fdec3aa
added codemagic detector (#480) 2022-05-23 20:20:33 -07:00
Dustin Decker
235a60a850
add more detectors (#577) 2022-05-23 18:39:49 -07:00
roxanne-tampus
da872f5c27
modified Alibaba detector to use standard library (#568) 
* added alibaba detector

* enhancement

* enhancement and ran mod tidy

* fixed
 2022-05-23 18:37:01 -07:00
roxanne-tampus
66dc7efac0
Added postbacks detector (#551) 
* Added postbacks detector

* enhancement
 2022-05-23 18:17:52 -07:00
roxanne-tampus
83dfed9257
Added zipcodebase detector (#550) 
* Added zipcodebase detector

* regex enhancement
 2022-05-23 18:15:49 -07:00
roxanne-tampus
75972a6f81
Added zenrows detector (#548) 2022-05-23 18:14:52 -07:00
roxanne-tampus
d5e034fddd
Added tefter detector (#547) 
* Added tefter detector

* enhancement
 2022-05-23 18:14:01 -07:00
roxanne-tampus
3bbc9ef394
Added diggernaut detector (#546) 2022-05-23 18:13:12 -07:00
roxanne-tampus
f509261727
added convertapi detector (#545) 2022-05-23 18:12:22 -07:00
roxanne-tampus
d5f8ddd804
Added collect2 detector (#544) 
* added collect2 detector

* enhancement as suggested
 2022-05-23 18:11:32 -07:00
roxanne-tampus
c9f1f61c49
Added cloudconvert detector (#543) 
* added cloudconvert detector

* updated regex
 2022-05-23 18:10:02 -07:00
Dustin Decker
509ae79143 add missing import 2022-05-23 15:48:50 -07:00
dependabot[bot]
3c5c2b6d28
Bump goreleaser/goreleaser-action from 2 to 3 (#569) 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 2 to 3.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-23 11:22:44 -07:00
dependabot[bot]
3e80de6495
Bump actions/checkout from 2 to 3 (#571) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-23 11:22:23 -07:00
dependabot[bot]
ec8b5cd840
Bump github/codeql-action from 1 to 2 (#570) 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-23 11:22:05 -07:00
ahrav
2051fe14ff
remove profililing. (#567) 2022-05-23 11:05:39 -07:00