Releases: trufflesecurity/trufflehog
Releases · trufflesecurity/trufflehog
v3.93.1
What's Changed
- Enhance security reporting guidelines in SECURITY.md by @joeleonjr in #4725
- Allow logging of caller info by @rosecodym in #4731
Full Changelog: v3.93.0...v3.93.1
Contributors
rosecodym and joeleonjr
Assets 11
v3.93.0
What's Changed
- Remove ResultWithMetadata.Data by @rosecodym in #4659
- Add tests for processResult by @rosecodym in #4674
- Switch out default HTTP client use in detectors by @bradlarsen in #4670
- [INS-202] Add rate limiting to the Github Analyzer by @mustansir14 in #4617
- Fix/issue 4578 path normalization for unix and windows by @Rusted2361 in #4614
- Auto-configure TruffleHog for Pre-commit Hooks by @kashifkhan0771 in #4666
- Include key info for analyze by @bill-rich in #4686
- fix: typos in comments by @NAM-MAN in #4676
- Stop using detectableChunk in processResult by @rosecodym in #4691
- fix(github): preserve trailing hyphens in repository names by @PascalThuet in #4695
- Skip failing Git Engine test by @mustansir14 in #4701
- [INS-281] Github Bug fix: UnitErr and UnitOK called for the same repo by @mustansir14 in #4681
- [INS-258] Revert includeRepos removal from GitHub source by @mustansir14 in #4673
- Re-enable Git Engine Test by @shahzadhaider1 in #4715
- Add some false positive tests by @rosecodym in #4703
- Unify false positive/overlap tests by @rosecodym in #4699
- Unify some false positive logic by @rosecodym in #4720
- [INS-249] Updated Gitlab client from v0.129.0 to v1.12.0(latest) by @MuneebUllahKhan222 in #4655
- [INS-307] Added unspecified(0.0.0.0) check to DetectorHttpClientWithNoLocalAddresses by @MuneebUllahKhan222 in #4726
- Added Analysis info to tableau detector by @MuneebUllahKhan222 in #4717
- Remove first-class verification overlap tracker by @rosecodym in #4723
- [INS-280] Fix Github "repostories" filter does not respect GHES endpoint by @mustansir14 in #4677
- [INS-228] Add ignorePattern configuration support to Postgres and Sqlserver detectors by @mustansir14 in #4612
New Contributors
- @Rusted2361 made their first contribution in #4614
- @NAM-MAN made their first contribution in #4676
- @PascalThuet made their first contribution in #4695
Full Changelog: v3.92.5...v3.93.0
Contributors
bradlarsen, PascalThuet, and 8 other contributors
Assets 11
v3.92.5
What's Changed
- [INS-206] Store Gitlab Project ID in secret location metadata by @mustansir14 in #4601
- [INS-242] Add more validations to Custom Detector config by @mustansir14 in #4642
- Fix syslog test failing due to hardcoded timestamp by @MuneebUllahKhan222 in #4646
- [INS-120] Increase code coverage for Postman's source scanItem function by @MuneebUllahKhan222 in #4648
- [INS-232] Fix S3 Source "panic: runtime error: index out of range" bug by @mustansir14 in #4610
- [INS-170] Unify JDBC URL Parsing Across Detector and Analyzer (Continued) by @mustansir14 in #4606
- Add exponential backoff retry logic in Twilio detector by @shahzadhaider1 in #4652
- Fix typo in help description for Postman API metric by @shahzadhaider1 in #4656
- Rework JWT detector to better block local IPs by @bradlarsen in #4607
- Gitlab Source: Backoff from Scan2 which is experimental to legacy pagination API call by @kashifkhan0771 in #4608
- fix: git commit date parsing for non-English locales by @GLEF1X in #4653
- fix: report accurate line numbers for chunked file scanning (#1876) by @GLEF1X in #4615
- Add Postman API monthly request limit metric by @shahzadhaider1 in #4667
- [INS-243] Fix jdbc detector detecting incomplete connection string and fixed invalid… by @MuneebUllahKhan222 in #4636
New Contributors
Full Changelog: v3.92.4...v3.92.5
Contributors
bradlarsen, mustansir14, and 4 other contributors
Assets 11
v3.92.4
What's Changed
- [INS-170] Unify JDBC URL parsing across detectors and analyzers by @mustansir14 in #4574
- Pagination and Rate-Limit Handling In Docker Registry Namespace API Calls by @nabeelalam in #4557
- [INS-226] Use pinned image for Quay registry Integration test by @mustansir14 in #4602
- Update module golang.org/x/crypto to v0.45.0 [SECURITY] by @renovate[bot] in #4562
- [INS-207] Add Role-Aware Resumption Support for Legacy S3 Scan by @MuneebUllahKhan222 in #4600
- Enable line numbers for GitHub Real-time by @rosecodym in #4611
Full Changelog: v3.92.3...v3.92.4
Contributors
renovate, rosecodym, and 3 other contributors
Assets 11
v3.92.3
What's Changed
- Add proto definitions for Google Drive Domain-Wide Delegation (DWD) by @shahzadhaider1 in #4596
- Fix git clone timeout typo by @rosecodym in #4599
- Update Azure Repos link format by @amanfcp in #4598
Full Changelog: v3.92.2...v3.92.3
Contributors
rosecodym, amanfcp, and shahzadhaider1
Assets 11
v3.92.2
What's Changed
- [INS-37] Fixed the issue of ftp connection ignoring the detector's co… by @MuneebUllahKhan222 in #4590
- Add optional git clone timeout by @rosecodym in #4597
New Contributors
- @MuneebUllahKhan222 made their first contribution in #4590
Full Changelog: v3.92.1...v3.92.2
Contributors
rosecodym and MuneebUllahKhan222
Assets 11
v3.92.1
What's Changed
- Improve Copper Detector verification with stricter status code and email matching by @amanfcp in #4594
Full Changelog: v3.92.0...v3.92.1
Contributors
amanfcp
Assets 11
v3.92.0
What's Changed
- Added API Call Metrics to Docker Source by @nabeelalam in #4552
- Added Additional Metrics and Job ID in the Docker Source by @nabeelalam in #4547
- [Fix] Updated the failing Docker Source Quay Registry Test by @nabeelalam in #4580
- Add Gitlab V3 Detector by @mustansir14 in #4563
- Add Metrics to RetryableHTTPClient by @mustansir14 in #4545
- [INS-104] Support units in S3 source by @mustansir14 in #4560
- [INS-204] Abort Postman scan if monthly API request limit crosses 80% by @mustansir14 in #4586
- Create way to add key-value pairs to new sinks by @rosecodym in #4582
- Skip flaky test by @rosecodym in #4595
- Add more clone logging by @rosecodym in #4593
- Apply configured include/ignore lists to GitLab unit scans by @rosecodym in #4592
Full Changelog: v3.91.2...v3.92.0
Contributors
rosecodym, nabeelalam, and mustansir14
Assets 11
v3.91.2
What's Changed
- Make Integrations team codeown source integrations by @rosecodym in #4561
- Fix custom regex link in readme.md by @jmcshannon in #4568
- Add some engine tests around the Verify flag by @rosecodym in #4566
- Addition of Installation Type field in Jira Source Proto [INS-79] by @shahzadhaider1 in #4564
- [INS-131] Add response id and response name to Postman metadata by @mustansir14 in #4555
- Make Integrations (shared) codeowners of proto/ by @rosecodym in #4576
New Contributors
- @jmcshannon made their first contribution in #4568
Full Changelog: v3.91.1...v3.91.2
Contributors
rosecodym, mustansir14, and 2 other contributors
Assets 11
v3.91.1
What's Changed
- Redact secret for Twilio API Key [INS-169] by @mustansir14 in #4550
- Fix JDBC Detector Bugs by @mustansir14 in #4548
- Add AnalysisInfo to verified results in detectors for new analyzers by @amanfcp in #4556
- Add generic JWT detection and verification by @bradlarsen in #4441
Full Changelog: v3.91.0...v3.91.1
Contributors
bradlarsen, amanfcp, and mustansir14