Mirrors/trufflehog
2
0
Fork 0
mirror of https://github.com/trufflesecurity/trufflehog.git synced 2024-11-10 15:14:38 +00:00
Code Issues Projects Releases Packages Wiki Activity
1698 commits 139 branches 257 tags 147 MiB
Commit graph

1698 commits

This branch
This branch
All branches
Author SHA1 Message Date
dependabot[bot]
3e414a3ba8
Bump github.com/google/go-cmp from 0.5.8 to 0.5.9 (#794) 
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.8 to 0.5.9.
- [Release notes](https://github.com/google/go-cmp/releases)
- [Commits](https://github.com/google/go-cmp/compare/v0.5.8...v0.5.9)

---
updated-dependencies:
- dependency-name: github.com/google/go-cmp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-16 08:50:49 -07:00
Bill Rich
a30b52f9b0
Use recover to catch panic in dep for old rars (#801) 2022-09-15 18:51:00 -07:00
ahrav
c4492b1fdc
Add support for MongoDB detector. (#793) 
* Add support for MongoDB detector.

* Remove extra line.

* Remove unused arg.

* Add context around found secret test.

* Remove unused arg.
 2022-09-15 05:47:09 -07:00
ahrav
e9599db240
[THOG-690] - Add visibility to slack metadata proto message (#796) 2022-09-15 05:01:45 -07:00
ahrav
33ab1cfeb2
[OC-101] - Prevent Gitlab detector panic (#799) 2022-09-15 05:00:15 -07:00
trufflesteeeve
945de06858
Fix include-members not working on github (#773) 2022-09-12 13:26:38 -04:00
Bill Rich
912d8e461d
Add context so to avoid splitting creds. (#791) 
* Add context so to avoid splitting creds.

* Add context newlines to expected results
 2022-09-09 15:00:33 -07:00
Bill Rich
248cff8201
Use disk-buffer-reader that implements Seeker and ReaderAt (#787) 
* Use disk-buffer-reader that implements Seeker and ReaderAt

* Include test
 2022-09-09 09:05:28 -07:00
Bill Rich
3fe916fe1e
add tests (#785) 2022-09-08 21:46:12 -07:00
Dustin Decker
ecfdb0105b
Provide correct username for app cloning and add integration test (#786) 2022-09-08 17:41:53 -07:00
Dustin Decker
80b247286b
Improve GitHub debug logging (#784) 
* close bodies early

* add more debug logging to github

* fix nil check

* Add nil checks for response
 2022-09-08 12:23:40 -07:00
ahrav
7ba583ca40
[THOG-681] - Handle errors sources (#783) 
* Handle errors w/ github source.

* Fix loop var captured by func literal.

* Fix loop var captured by func literal.

* Set completed progress if the scan completes with no errors.

* Set progress to 100% if the scope and iteration are both 0.

* Fix commentary.

* Fix test.

* Return after the defer to os.RemoveAll.

* Fix unauth scan.

* Inline range loop.

* update tests for partial scan completion with errors. Ensure correct progress is set.

* Update progress for all sources.

* Update github test.

* Address comments.
 2022-09-07 19:40:37 -07:00
Dustin Decker
c12be4d98d Add Retryable HTTP client that suports custom timeout 2022-09-07 18:23:20 -07:00
dependabot[bot]
5be6b1e340
Bump github.com/rs/zerolog from 1.27.0 to 1.28.0 (#742) 
Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.27.0 to 1.28.0.
- [Release notes](https://github.com/rs/zerolog/releases)
- [Commits](https://github.com/rs/zerolog/compare/v1.27.0...v1.28.0)

---
updated-dependencies:
- dependency-name: github.com/rs/zerolog
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-06 20:06:37 -07:00
dependabot[bot]
4695a4e3a9
Bump github.com/felixge/fgprof from 0.9.2 to 0.9.3 (#780) 
Bumps [github.com/felixge/fgprof](https://github.com/felixge/fgprof) from 0.9.2 to 0.9.3.
- [Release notes](https://github.com/felixge/fgprof/releases)
- [Commits](https://github.com/felixge/fgprof/compare/v0.9.2...v0.9.3)

---
updated-dependencies:
- dependency-name: github.com/felixge/fgprof
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-06 20:05:29 -07:00
Dustin Decker
67e8df96a4
Add AWS account information (#782) 
* Add AWS account information

* nit
 2022-09-06 17:55:03 -07:00
Apoorv Munshi
33ff9178e4
fix regex pattern for confluent detector (#778) 
* fix regex pattern for confluent detector

* remove RawV2 filed from detectors.Result

* add RawV2 field back
 2022-09-06 10:42:36 -07:00
Bill Rich
41936169c7
Use gitparse for unstaged changes. (#775) 2022-09-03 18:01:36 -07:00
Dustin Decker
b9d6f11609
clean up detectors (#776) 2022-09-02 12:00:02 -07:00
Max Thomson
d7123c6965
Fix Honeycomb detector with both key formats (#777) 2022-09-02 11:44:16 -07:00
Bill Rich
65a7855713
Split parsing from reader (#774) 2022-09-02 11:02:38 -07:00
Dustin Decker
aba56523b6
Fix okta detector (#771) 2022-09-01 20:05:06 -07:00
roxanne-tampus
90da460fa1
added new detector (#765) 2022-08-31 17:54:23 -07:00
roxanne-tampus
cc2df10e49
fix issue in codacy (#758) 
* updated endpoint

* add tags
 2022-08-31 17:32:22 -07:00
roxanne-tampus
5db6237f2a
update docs (#764) 2022-08-31 17:30:22 -07:00
Mildred Bernardo
4c3c103b62
added new detectors (#761) 2022-08-31 11:50:33 -07:00
ahrav
ad1c96c151
[OC-71] - Add helper methods to context to set metatada token values for the API (#760) 
* Add helper methods to context to set metatada token values for the API.

* Rename to SetParent.
 2022-08-31 08:09:12 -07:00
Marlon
a35786dccd
fix and make_protos (#757) 2022-08-30 17:13:04 -07:00
roxanne-tampus
18bca4b442
Enhancement in Gitlab detector (#588) 
* enhancement on regex

* accepts both old and new token

* added gitlabv2 test file
 2022-08-30 11:58:32 -07:00
Marlon
79ebd68068
added new detector (#751) 
Co-authored-by: marlon pamisa <marlon.pamisa@banyanhills.com>
 2022-08-30 11:28:41 -07:00
Bill Rich
d11ce27f33
Use correct reader in filesystem source (#756) 2022-08-30 10:24:52 -07:00
ahrav
37c4eea66a
[chore] - ioutil.ReadFile is deprecated (#753) 
* Use os.ReadFile.

* Update imports.

* remove unused import.
 2022-08-30 09:41:12 -07:00
roxanne-tampus
fa2d6b90cd
added new detectors (#743) 2022-08-29 16:44:11 -07:00
dependabot[bot]
8b6eee73bc
Bump go.uber.org/zap from 1.22.0 to 1.23.0 (#741) 
Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.22.0 to 1.23.0.
- [Release notes](https://github.com/uber-go/zap/releases)
- [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/uber-go/zap/compare/v1.22.0...v1.23.0)

---
updated-dependencies:
- dependency-name: go.uber.org/zap
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-08-29 11:49:55 -07:00
Dustin Decker
fa9479100e
Add common sentry recover library and add into goroutines (#738) 
* Add common sentry recover library and add into goroutines

* fix nits
 2022-08-29 11:45:37 -07:00
Miccah
f3367d7910
[THOG-643] Implement independent log level controls (#733) 
* [THOG-643] Implement independent log level controls

There are two log level controls to mentally distinguish. Log levels
associated with a sink (e.g. stdout and streamed), and log levels
associated with a logger (e.g. a GitHub source).

The level is determined to be the minimum of the two. If a sink is at
level 0, then it will only output level 0 logs regardless of the
logger's level. This is best demonstrated by TestSinkWithName.

* Rename WithName to WithNamedLevel

* Check flush errors

* Replace IncreaseLevelCore with custom LevelCore

Adding a leveler that was less verbose would cause the initialization
fail, and therefore not be added to the core. This check is only at
the time of initialization.

An alternative approach to creating our own core is to set the child log
level equal to the parent, so initialization is guaranteed (with the
added benefit of intuitive behavior).

* Use controller if it exists, otherwise inherit parent's log level

* Cleanup some tests
 2022-08-26 15:27:09 -05:00
Dustin Decker
2452e93a80
Import 27 new detectors (#737) 2022-08-26 12:35:06 -07:00
Felipe Nakandakari
c8ac7c392e
Allow secrets to be passed as env vars (#736) 2022-08-26 09:37:16 -07:00
ahrav
20cdcbc970
[bug] - Fix the starting index value for plus line check. (#734) 
* Fix the starting index value for plus line check.

* Set the correct source type for notifications.

* Reset old value.

* Fix the starting index value for plus line check.

* Fix len check.

* Reset old value.

* Add tests.

* Update tests.

* Update tests.
 2022-08-25 10:45:35 -07:00
Marlon
098d4a9e7d
added appointed scanner (#425) 
* added appointed scanner

* fix comment

* fix comment

* fix comment

* fix issue

Co-authored-by: Dustin Decker <dustin@trufflesec.com>
 2022-08-25 10:40:35 -07:00
Marlon
8709b4fdc6
added apilayer scanner (#368) 
* added apilayer scanner

* fix comment

* fix comment
 2022-08-25 10:36:41 -07:00
roxanne-tampus
024c847f83
Added braintreepayments detector (#541) 
* added braintreepayments detector

* updated condition based on suggestion

* enhancements

* enhancement

* enhancement for valid response
 2022-08-25 10:34:53 -07:00
roxanne-tampus
8a9229cf73
Added duply detector (#552) 
* Added duply detector

* enhancement
 2022-08-25 10:33:34 -07:00
roxanne-tampus
77fabe6191
Added gtmetrix detector (#554) 2022-08-25 10:33:02 -07:00
roxanne-tampus
6f07c59354
Added monkeylearn detector (#553) 2022-08-25 10:32:32 -07:00
roxanne-tampus
e192aee66a
Added twist detector (#549) 
* Added twist detector

* enhancement

* auth enhancement

* enhancements

* enhancement
 2022-08-25 10:31:43 -07:00
roxanne-tampus
64f15a7bfe
Added holistic detector (#556) 
* Added holistic detector

* enhancement
 2022-08-25 10:30:43 -07:00
roxanne-tampus
ebd6b5565b
Added transferwise detector (#558) 
* Added transferwise detector

* update version

* updated regex
 2022-08-25 10:29:29 -07:00
roxanne-tampus
4982755db2
Added ecostruxureit detector (#555) 
* Added ecostruxureit detector

* updated regex
 2022-08-25 10:27:43 -07:00
Marlon
7ccf69d419
added parseur detector (#454) 
* added parseur detector

* fix comment

* fix comment
 2022-08-25 10:26:23 -07:00