chore(deps): update pre-commit hook zricethezav/gitleaks to v8.21.1 - autoclosed #33
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
f75f547 to
789ddf7
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
789ddf7 to
005c01a
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
005c01a to
faf75e0
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
faf75e0 to
a422336
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
a422336 to
7d88d89
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
7d88d89 to
bf18a27
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
2 times, most recently
from
738e596 to
42465af
Compare
| datasource | package | from | to | | ----------- | -------------------- | ------- | ------- | | github-tags | zricethezav/gitleaks | v8.18.4 | v8.21.1 |
renovate
bot
force-pushed
the
renovate/zricethezav-gitleaks-8.x
branch
from
42465af to
43d1dcf
Compare
renovate
bot
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v8.18.4->v8.21.1Note: The
pre-commitmanager in Renovate is not supported by thepre-commitmaintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.Release Notes
zricethezav/gitleaks (zricethezav/gitleaks)
v8.21.1Compare Source
v8.21.0Compare Source
Changelog
aabe381Define multiple allowlists per rule (#1496)8ea6085build: upgrade gitleaks/go-gitdiff to v0.9.1 (#1559)be9d0f8Fix rule extension (#1556)9988e52Update base config allowlist (#1555)8fb39bafeat(azure): detect Azure AD client secrets (#1199)14c924dchore: match gitleaks.toml anywhere (#1553)respect @rgmz @9999years
v8.20.1Compare Source
Changelog
b2fbaebfeat(config): add placeholder regexes to global allowlist (#1547)00bb821feat: add PrivateAI rule (#1548)445abe3Bump golang verion used in docker build to match version specified in go.mod (#1551)1a2f656feat: add cohere rule (#1549)82d737dfeat(generate): generate global (#1546)f6e5499Feat/nuget config password rule (#1540)v8.20.0Compare Source
Changelog
bf8a49fMake private key check less greedy and include fifth dash (#1440)9c354f5print tags if they exist2278a2aDecode Base64 (#1488)c5b15c9refactor(config): keyword map (#1538)a971a32fix: use regexTarget for extend config (#1536)a0f2f46feat: bump go to 1.22 (#1537)4e8d7d3fix: handle pre-commit and staged (#1533)f8dcd83Bugfix/1352 incorrect report multiple lines (#1501)Huge huge thanks to @bplaxco for supporting b64 decoding, @recreator66 for bug fixes, and to @rgmz for his continued support of the project in the form of PRs and reviews. Thanks you!
New Feature: Decoding
Sometimes secrets are encoded in a way that can make them difficult to find
with just regex. Now you can tell gitleaks to automatically find and decode
encoded text. The flag
--max-decode-depthenables this feature (the defaultvalue "0" means the feature is disabled by default).
Recursive decoding is supported since decoded text can also contain encoded
text. The flag
--max-decode-depthsets the recursion limit. Recursion stopswhen there are no new segments of encoded text to decode, so setting a really
high max depth doesn't mean it will make that many passes. It will only make as
many as it needs to decode the text. Overall, decoding only minimally increases
scan times.
The findings for encoded text differ from normal findings in the following
ways:
include that as well
decoded:<encoding>anddecode-depth:<depth>Currently supported encodings:
base64(both standard and base64url)v8.19.3Compare Source
Changelog
ed19c4efix(config): extend allowlist & handle extend when validating (#1524)989ef19refactor(kubernetes-secret): tweak variable chars (#1520)191eb43Revert "remove validate config test temporarily" (#1529)78f7d3ffeat: create fly.io rule (#1528)7098f6dfix: to many false-positive for gltf files, add gltf suffix to allowlist (#1527)97dbe1eAdd support in .gitleaksignore file comment strings (#1425) (#1502)9e06824Restrict Etsy keywords (#1491)db78260feat(github): add entropy to rule (#1489)df126a7feat(gcp): update api key rule (#1481)75dd70efix(hashicorp): ignore common fps (#1498)8510d39fix(square): make prefix case sensitive (#1469)3698060refactor(kubernetes-secret): collapse rules and update regex (#1462)v8.19.2Compare Source
Changelog
128cd22fix(rule): comment out errant validation case (#1509)1a6d2b0remove validate config test temporarily0874ebcUpdate README.mdv8.19.1Compare Source
Changelog
9463ffafix flag access (#1506)v8.19.0Compare Source
Changelog
44ad62eDeprecatedetectandprotect. Addgit,dir,stdin(#1504) HEY THIS IS AN IMPORTANT CHANGE. If it breaks some stuff... sorry, I'll fix it asap, just open an issue and make sure to ping me. The change is meant to be backwards compatible.e93a7c0Update Harness rules to add _ and - in the account ID part. (#1503)4e43d11chore: fix gl workflow error (#1487)bd81872Make config generation utils public (#1480)3be7faaUpdate Hashicorp Vault token pattern (#1483)1aae66dfeat(config): update rule validation (#1466)6dfcf5eUpdate .gitleaksignoref361c5efix(detect): handle EOF with bytes (#1472)8a1ca9eAdded poetry.lock to default allowlist paths (#1474)525c4b4refactor(sarif): remove |name| and change |shortDescription| (#1473)c0fda43Use rule id for config validation error (#1463)d3c4b90Use first non-empty group ifsecretGroupisn't set (#1459)b4009bfchore: remove unnecessary capture groups (#1460)80bd177Return non-0 exit code fromDetectGit(#1461)0334ec1add gradle verification-metadata.xml to global allowlist (#1446)c1345e1feat(openshift): add user token (#1449)7697b3e(feat): Adding secret detection rule for Kubernetes secrets (#1454)26f3469add version to defaultbc979deAdd go.work and go.work.sum to global allowlist (#1353)b899915Add harness PAT and SAT rules (#1406)4c5195bUpdate README.mdConfiguration
📅 Schedule: Branch creation - "on saturday" in timezone Europe/Paris, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.