Dustin Decker
db7045acb1
Update go-gitdiff dependency to fix hanging issue ( #632 )
2022-06-24 14:11:35 -07:00
Dustin Decker
85ed11519f
fix npd for incompatible sources on json legacy output ( #623 )
2022-06-21 09:50:55 -07:00
trufflesteeeve
d1a81afbb5
Only include one result per AWS Key ID, preferably verified ( #619 )
...
Also ignore unverified results that match hashes, because they are
probably just hashes.
2022-06-17 16:22:36 -04:00
trufflesteeeve
e793f4a5e6
Properly count the number of repos after a github scan resume ( #625 )
2022-06-17 16:21:22 -04:00
trufflesteeeve
10f4d02c31
Allow gitlab to resume from encoded resume info ( #611 )
2022-06-17 11:45:17 -04:00
Dustin Decker
ffacaa1816
replace dependency with patched version
2022-06-14 21:17:26 -07:00
Dustin Decker
2527ee26e6
improve zombie fix
2022-06-14 20:21:39 -07:00
Dustin Decker
423040f80b
upgrade dependency
2022-06-13 23:48:22 -07:00
Dustin Decker
2f006f5590
fix dockerfiles
2022-06-13 19:45:24 -07:00
Dustin Decker
0570e0fea4
bump dependency
2022-06-13 18:56:22 -07:00
Dustin Decker
2178f1f42e
reword and fix error logging
2022-06-13 16:14:22 -07:00
trufflesteeeve
e123e9f177
Cleanup individual repositories after scanning ( #614 )
2022-06-10 14:00:50 -04:00
Dustin Decker
9bcddbc45a
Change GHE org enum to use since ID instead of pages ( #618 )
...
* Change GHE org enum to use since ID instead of pages
* fix logging
2022-06-09 15:09:13 -07:00
trufflesteeeve
26bf1664eb
Move aws detector back to ID checking against secrets, make ID the redacted secret ( #617 )
2022-06-09 15:06:08 -07:00
Dustin Decker
8051b03bbf
improve debug logging for GHE enum ( #615 )
2022-06-08 13:56:07 -07:00
Dustin Decker
1a12a25f4d
Enumerate all visible orgs in GHE ( #612 )
2022-06-07 09:24:31 -07:00
Dustin Decker
e3bbf293e2
Fix NPD on mutex ( #609 )
...
* Fix NPD on mutex
* fix test
2022-06-06 17:20:27 -07:00
Miccah
9074006695
Fix bug in GitHub unit test mocking ( #608 )
2022-06-06 16:58:34 -07:00
dependabot[bot]
56c8717e2f
Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 ( #606 )
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.7.1 to 1.7.2.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.7.1...v1.7.2 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-06 15:19:47 -07:00
trufflesteeeve
fd79a367f1
Allow github to resume from encoded resume info ( #601 )
2022-06-06 12:08:57 -04:00
ahrav
59fc54b94a
[Thog-441] create public event monitoring source ( #599 )
...
* Add source for public event monitoring.
* Update protos.
* Add source for public event monitoring.
* Update metadata.
* Update proto.
* Update proto.
* Update pb files.
2022-06-03 14:46:31 -07:00
Miccah
fc18a5ae0c
Bug fix and add authentication in shallow clone ( #595 )
2022-05-31 20:45:28 -05:00
Miccah
d7d5db9e78
Replace AccessToken protobuf with a simpler string type ( #594 )
2022-05-31 14:28:07 -05:00
Dustin Decker
c52545a0d3
Increase default timeout for SaneHttpClient, but fail early. ( #587 )
...
* Increase default timeout for SaneHttpClient, but fail early.
* Don't change default for client with timeout
2022-05-26 11:08:38 -07:00
ahrav
143fa333f3
[THOG-403] Fix var naming. ( #586 )
...
* remove profililing.
* rename uri to URI.
* change var declaration.
2022-05-25 15:23:20 -07:00
Dustin Decker
43955b9a38
Use GetCallerIdentity for AWS verification ( #585 )
2022-05-25 14:45:28 -07:00
Max Thomson
d98833b70b
README Total Detectors badge & small improvements ( #584 )
...
* Add Total Detectors badge to README
* A few README quality of life updates
2022-05-25 11:53:40 -07:00
Miccah
6fa2171a22
Refactor Engine to wait for workers in a Finish method ( #581 )
...
* Refactor Engine to wait for workers in a Finish method
This should allow the engine to run multiple concurrent scans if
desired before shutting down.
Additionally, this commit refactors some of the printing logic to the
output package.
* Fix tests
2022-05-25 11:35:44 -05:00
Dustin Decker
aff07927ea
Update README.md ( #582 )
2022-05-25 08:39:46 -07:00
Miccah
67ad2f2247
Shallow clone if --since-commit is provided ( #564 )
...
* Shallow clone if --since-commit is provided
* Set the user before constructing args
* Fix vbout detector
* Address PR comments
* Use a better name for timestamp
* Use net.URL.String method for the remote path
2022-05-24 10:49:03 -05:00
Dustin Decker
ad92c6ecd9
tidy up dependencies
2022-05-24 05:11:27 -07:00
roxanne-tampus
80c6579226
Updated aws detector ( #579 )
2022-05-24 05:07:54 -07:00
dependabot[bot]
77de8f1e5c
Bump github.com/aws/aws-sdk-go from 1.44.9 to 1.44.20 ( #576 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.9 to 1.44.20.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.9...v1.44.20 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-24 04:59:20 -07:00
Dustin Decker
0eac3be94c
ci improvements
2022-05-23 21:13:32 -07:00
Marlon
cd8fdec3aa
added codemagic detector ( #480 )
2022-05-23 20:20:33 -07:00
Dustin Decker
235a60a850
add more detectors ( #577 )
2022-05-23 18:39:49 -07:00
roxanne-tampus
da872f5c27
modified Alibaba detector to use standard library ( #568 )
...
* added alibaba detector
* enhancement
* enhancement and ran mod tidy
* fixed
2022-05-23 18:37:01 -07:00
roxanne-tampus
66dc7efac0
Added postbacks detector ( #551 )
...
* Added postbacks detector
* enhancement
2022-05-23 18:17:52 -07:00
roxanne-tampus
83dfed9257
Added zipcodebase detector ( #550 )
...
* Added zipcodebase detector
* regex enhancement
2022-05-23 18:15:49 -07:00
roxanne-tampus
75972a6f81
Added zenrows detector ( #548 )
2022-05-23 18:14:52 -07:00
roxanne-tampus
d5e034fddd
Added tefter detector ( #547 )
...
* Added tefter detector
* enhancement
2022-05-23 18:14:01 -07:00
roxanne-tampus
3bbc9ef394
Added diggernaut detector ( #546 )
2022-05-23 18:13:12 -07:00
roxanne-tampus
f509261727
added convertapi detector ( #545 )
2022-05-23 18:12:22 -07:00
roxanne-tampus
d5f8ddd804
Added collect2 detector ( #544 )
...
* added collect2 detector
* enhancement as suggested
2022-05-23 18:11:32 -07:00
roxanne-tampus
c9f1f61c49
Added cloudconvert detector ( #543 )
...
* added cloudconvert detector
* updated regex
2022-05-23 18:10:02 -07:00
Dustin Decker
509ae79143
add missing import
2022-05-23 15:48:50 -07:00
dependabot[bot]
3c5c2b6d28
Bump goreleaser/goreleaser-action from 2 to 3 ( #569 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 2 to 3.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-23 11:22:44 -07:00
dependabot[bot]
3e80de6495
Bump actions/checkout from 2 to 3 ( #571 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-23 11:22:23 -07:00
dependabot[bot]
ec8b5cd840
Bump github/codeql-action from 1 to 2 ( #570 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-23 11:22:05 -07:00
ahrav
2051fe14ff
remove profililing. ( #567 )
2022-05-23 11:05:39 -07:00