Releases: trufflesecurity/trufflehog
Releases · trufflesecurity/trufflehog
v3.88.10
What's Changed
- Differentiate postman folder from request when at collection root by @casey-tran in #3912
- Replace
golang.org/x/expwith stdlib by @Juneezee in #3916 - remove magnetic from default by @zricethezav in #3920
New Contributors
Full Changelog: v3.88.9...v3.88.10
Contributors
zricethezav, Juneezee, and casey-tran
Assets 11
v3.88.9
What's Changed
- [tempfix] - add bounds check check to avoid panics by @ahrav in #3867
- Implemented Postman collection authorization scanning by @casey-tran in #3910
- Make log command extensible internally by @rosecodym in #3888
- Add protos for GitHub Realtime by @rosecodym in #3911
Full Changelog: v3.88.8...v3.88.9
Contributors
rosecodym, ahrav, and casey-tran
Assets 11
v3.88.8
What's Changed
- Reinstated Postman body scanning by @casey-tran in #3904
- Add Jenkins happy-path logging by @rosecodym in #3908
- [Update] Fixed the Return of the GCP Detector by @nabeelalam in #3905
- anthropic api key analyzer by @kashifkhan0771 in #3878
- fixed uri regex issue by @kashifkhan0771 in #3815
- Update Azure Refresh Token errors by @rgmz in #3865
Full Changelog: v3.88.7...v3.88.8
Contributors
rosecodym, nabeelalam, and 3 other contributors
Assets 11
v3.88.7
What's Changed
- optimized and updated mailgun analyzer by @kashifkhan0771 in #3899
- updated openai analyzer output by @kashifkhan0771 in #3902
- dockerhub analyzer by @kashifkhan0771 in #3861
- [fix] False Positive Verification in Auth0oauth Detectors by @abmussani in #3901
- Fix double summary printing by @mcastorina in #3903
- [Feat] implementation Notion analyzer by @abmussani in #3869
Full Changelog: v3.88.6...v3.88.7
Contributors
mcastorina, abmussani, and kashifkhan0771
Assets 11
v3.88.6
What's Changed
- disable noisy detector by @zricethezav in #3876
- Feature: Airtable OAuth Detector by @nabeelalam in #3868
- fix(deps): update github.com/tailscale/depaware digest to b748de0 by @renovate in #3883
- fixed sourcegraph analyzer by @kashifkhan0771 in #3877
- Exported Ahocorasick core in engine by @casey-tran in #3880
- Merge analyze tui with trufflehog tui by @hxnyk in #3735
- fixed square analyzer client error by @kashifkhan0771 in #3887
- chore(deps): update dependency go to v1.23.6 by @renovate in #3889
- fix(deps): update module github.com/aws/aws-sdk-go to v1.55.6 by @renovate in #3893
- fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.8 by @renovate in #3894
- fix(deps): update module github.com/go-git/go-git/v5 to v5.13.2 by @renovate in #3895
- fix(deps): update module github.com/go-ldap/ldap/v3 to v3.4.10 by @renovate in #3896
Full Changelog: v3.88.5...v3.88.6
Contributors
renovate, hxnyk, and 4 other contributors
Assets 11
v3.88.5
What's Changed
- Enable Auth0 by @zricethezav in #3857
- Create detector for Azure refresh tokens by @rgmz in #2978
- fix base on initial commits by @bobidle in #3586
- [Feat] PrivateKey Analyzer by @abmussani in #3854
- [SCAN-165] Use Err Reporting by @0x1 in #3862
- Use smaller array to count commits in the GHA action by @sryabkov in #3864
- Compress release with UPX by @dustin-decker in #3456
New Contributors
Full Changelog: v3.88.4...v3.88.5
Contributors
sryabkov, abmussani, and 5 other contributors
Assets 11
v3.88.4
What's Changed
- Update postman metadata by @casey-tran in #3852
- Support exclude regexes, excludewords, and entropy filters for custom detectors by @zricethezav in #3860
Full Changelog: v3.88.3...v3.88.4
Contributors
zricethezav and casey-tran
Assets 11
v3.88.3
What's Changed
- [chore] Use static token in GitHub source by @mcastorina in #3834
- Update log for large s3 file by @0x1 in #3835
- oss-87: added new sanity detector by @kashifkhan0771 in #3836
- Support for Customize Endpoint in Gitlab Analyzer by @abmussani in #3832
- fixed jirav1 detector email pattern by @kashifkhan0771 in #3826
- Actually run unit tests by @rgmz in #3773
- Run detector tests from
testworkflow by @rgmz in #3839 - issue:3838 - fixed common email pattern by @kashifkhan0771 in #3840
- [Fix] Opsgenie Analyzer Http Client by @abmussani in #3841
- [chore] - fix import issue by @ahrav in #3842
- [URI] Do not attempt multiple verification attempts if host is non-resolvable by @rgmz in #3656
- Remove
if len(match) != 2check in detectors by @rgmz in #2746 - Fix Ngrok detector by @rgmz in #3844
- fix ngrok test by @zricethezav in #3845
- Remove global variable scanning implementation for Postman by @casey-tran in #3843
- fixed sentry auth token detector by @kashifkhan0771 in #3827
- Fix typo in scope description by @hxnyk in #3846
- use first capture group in custom detector regex if available by @zricethezav in #3853
- Improve Jenkins error message by @rosecodym in #3855
- [Fix] use unrestricted http client only for non-safe requests by @abmussani in #3847
New Contributors
- @casey-tran made their first contribution in #3843
Full Changelog: v3.88.2...v3.88.3
Contributors
mcastorina, abmussani, and 8 other contributors
Assets 11
v3.88.2
What's Changed
- Deprecated RockSet and RestPack detectors by @kashifkhan0771 in #3812
- [chore] - remove resumption option by @ahrav in #3830
- Update ScrapingBee detector by @rgmz in #3820
- Updated Slack detector. Added revoked token check by @nabeelalam in #3831
Full Changelog: v3.88.1...v3.88.2
Contributors
ahrav, nabeelalam, and 2 other contributors
Assets 11
v3.88.1
What's Changed
- fixed github issue 3774 for custom detector secret size by @kashifkhan0771 in #3816
- fixed github issue 3819 for endpoint customizer tests by @kashifkhan0771 in #3823
- fixed github issue 3821 for string shannon entropy test by @kashifkhan0771 in #3824
- fixed bombbomb detector pattern test as part of issue 3817 by @kashifkhan0771 in #3825
- Stop using context.TODO in archive handler by @rosecodym in #3809
- fix(deps): update module github.com/go-git/go-git/v5 to v5.13.0 [security] by @renovate in #3829
Full Changelog: v3.88.0...v3.88.1
Contributors
renovate, rosecodym, and kashifkhan0771