- Update to version 3.67.5:
  * Refactor UnitHook to block the scan if finished metrics aren't handled (#2309)
  * skip community PR (forks) secret scans for now (#2401)
  * [feat] - buffered file writer metrics (#2395)
  * Update GitParse to handle quoted binary filenames (#2391)
  * Allow multiple domains for Forager (#2400)
  * prevent concurrent map writes (#2399)
  * Allow CLI version pinning in GHA (#2397) (#2398)
  * Set GHA workdir (#2393)
  * Fix handling of GitHub ratelimit information (#2041)
  * [feat] - use diff chan (#2387)
  * [not-fixup] - Reduce memory consumption for Buffered File Writer (#2377)
  * fix: case-insensitive ext check (#2383)
  * tightening opsgenie detection and verification (#2389)
  * Fix binary file hanging bug in git sources (#2388)
  * Disable GitHub wiki scanning by default (#2386) (forwarded request 1145429 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.67.4:
  * [feat] - use diff chan (#2387)
  * [not-fixup] - Reduce memory consumption for Buffered File Writer (#2377)
  * fix: case-insensitive ext check (#2383)
  * tightening opsgenie detection and verification (#2389)
  * Fix binary file hanging bug in git sources (#2388)
  * Disable GitHub wiki scanning by default (#2386)
  * [fixup] - correctly use the buffered file writer (#2373)
  * custom detector dogs (#2376)
  * use only the DetectorKey as a map field (#2374)
  * [feat] - concurently scan the filesystem source (#2364)
  * [chore] Cleanup GitLab source errors (#2345)
  * [bug] - use DetectorKey as the key in the detectorKeysWithResults map (#2366)
  * Add s3 credential validation (#2362)
  * Polite Verification (#2356)
  * Make AzureDevopsPersonalAccessToken verification more robust (#2359)
  * fix (#2360)
  * update azure test files to check rawV2 (#2353)
  * [chore] Add filesystem integration test (#2358)
  * Scan GitHub wikis #2233
  * added flyio protos (#2357)
  * Allow for configuring the buffered file writer (#2319)
  * [feat] - tmp file diffs (#2306)
  * Fix filesystem enumeration ignore paths bug (#2355)
  * Detectors Updates 1 for Tristate Verification (#2187)
  * feat(detectors): update template (#2342)
  * Azure function key is throwing FPs (#2352)
  * Improve fp ignore logic (#2351)
  * added azuresearchquerykey detector (#2349)
  * added azuresearchadminkey detector (#2348) (forwarded request 1144854 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.67.2:
  * [fixup] - correctly use the buffered file writer (#2373)
  * custom detector dogs (#2376)
  * use only the DetectorKey as a map field (#2374)
  * [feat] - concurently scan the filesystem source (#2364) (forwarded request 1144376 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.67.1:
  * Add s3 credential validation (#2362)
  * [bug] - use DetectorKey as the key in the detectorKeysWithResults map (#2366)

- Update to version 3.67.0:
  * [chore] Cleanup GitLab source errors (#2345)
  * [bug] - use DetectorKey as the key in the detectorKeysWithResults map (#2366)
  * Add s3 credential validation (#2362)
  * Polite Verification (#2356)
  * Make AzureDevopsPersonalAccessToken verification more robust (#2359) (forwarded request 1143756 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.66.3
  * Allow for configuring the buffered file writer (#2319)
  * added flyio protos (#2357)
  * Scan GitHub wikis (#2233)
  * [chore] Add filesystem integration test (#2358)
  * update azure test files to check rawV2 (#2353)
  * [bug] fix script change (#2360)

- Update to version 3.66.2:
  * fix (#2360)
  * update azure test files to check rawV2 (#2353)
  * [chore] Add filesystem integration test (#2358)
  * Scan GitHub wikis #2233
  * added flyio protos (#2357)
  * Allow for configuring the buffered file writer (#2319)
  * [feat] - tmp file diffs (#2306)
  * Fix filesystem enumeration ignore paths bug (#2355)
  * Detectors Updates 1 for Tristate Verification (#2187) (forwarded request 1143193 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.66.1:
  * Azure function key is throwing FPs (#2352)

- Update to version 3.66.0:
  * feat(detectors): update template (#2342)
  * Azure function key is throwing FPs (#2352)
  * Improve fp ignore logic (#2351)
  * added azuresearchquerykey detector (#2349)
  * added azuresearchadminkey detector (#2348)
  * added azurefunctionkey detector (#2337)
  * updates to plain and json printing to include verification error (#2335) (forwarded request 1142728 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.65.0:
  * Add the new MaxMind license key format (#2181)
  * Prevent print or logging in detectors (#2341)
  * make sure to close connections after testing (#2343)
  * Fix test (#2339)
  * add tri-state verification to yelp (#1736)
  * Improve GitHub scan logging (#2220)
  * Update DockerHub detector logic (#2266)
  * Add Google oauth2 token detector (#2274)

- Update to version 3.64.0:
  * add priority semaphore (#2336)
  * updating doppler logic (#2329)
  * added azuredevopspersonalaccesstoken detector (#2315)
  * Walk directories in filesystem source enumeration (#2313)
  * [feat] - Replace regexp pkg w/ go-re2 in detectors (#2324)
  * Update Gitlab repo count in tests #2333
  * Narrow Postgres detector to only look for URIs (#2314)
  * fixing incorrect acct num id for some aws keys (#2332) (forwarded request 1142057 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.11:
  * updating detector logic for zenscrape (#2316)
  * Add prometheus metrics to measure hook execution time (#2312)
  * [chore] - reduce test time (#2321)
  * fix(deps): update module github.com/aws/aws-sdk-go to v1.50.0 (#2325)
  * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.0.4 (#2322)
  * fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.1 (#2320)
  * fix(deps): update golang.org/x/exp digest to 1b97071 (#2318)
  * [chore] - Update Chunk struct comment (#2317)
  * fix(deps): update module github.com/hashicorp/golang-lru to v2 (#2054)
  * save 8 bytes per chunk (#2310) (forwarded request 1141026 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.10:
  * [chore] - Add regex and keyword for api_org tokens (#2240)
  * Assume unauthenticated github scans have public visibility (#2308)
  * [fixup ] - Allow ssh cloning with AWS Code Commit (#2307)
  * added azure protos (#2304)
  * Disable recently added postgres detector because it it too sensitive (#2303)
  * [feat] - Provide CLI flag to only use custom verifiers (#2299)
  * Individuate archive tests #2293
  * [feat] - Allow for the use of include/exclude path files for filesystem scans (#2297)
  * [chore] - small updates (#2288)
  * fix(deps): update module github.com/bradleyfalzon/ghinstallation/v2 to v2.9.0 (#2295)
  * fix(deps): update module github.com/aws/aws-sdk-go to v1.49.19 (#2294)
  * feat(installation): Implement checksum signature verification (#2157)
  * fix(deps): update module github.com/aws/aws-sdk-go to v1.49.18 (#2292)
  * fix(deps): update module cloud.google.com/go/storage to v1.36.0 (#2291)
  * chore(deps): update sigstore/cosign-installer action to v3.3.0 (#2290)
  * chore(deps): update alpine docker tag to v3.19 (#2287)
  * fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.19 (#2286)
  * Extend memory cache (#2275)
  * fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.3 (#2285)
  * fix(deps): update golang.org/x/exp digest to 0dcbfd6 (#2284)
  * fix(deps): update module github.com/azuread/microsoft-authentication-library-for-go to v1.2.1 (#2282)
  * adding postgres detector (#2108)
  * update test (#2283)
  * fix(deps): update golang.org/x/exp digest to be819d1 (#2281)
  * fix(signable): ignore common false positives (#2230)
  * fix(parseur): ignore false positives (#2229)
  * [chore] - update docs for pre-commit (#2280)
  * 1833 Fix syslog udp (#1835)
  * Wrap temp deletion err #2277 (forwarded request 1139765 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.7:
  * Use directory iterator instead of walkdir (#2260)
  * Add handlerOpts back (#2258)
  * Skip all binaries (#2256)
  * Add skip archive support (#2257) (forwarded request 1134935 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.5:
  * move cleanup to run (#2245)
  * Adds basic if/else check if pid slice is empty (#2244)
  * fix(deps): update module golang.org/x/crypto to v0.17.0 [security] (#2243)
  * add secretID to chunk (#2242) (forwarded request 1133955 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.3:
  * Bump github.com/docker/docker (#2213)
  * Update metabase verification to check for a valid JSON response (#2210)
  * [chore] Remove unnecessary string conversion in tefter detector (#2209)
  * fix and refactor browserstack detector (#2208)
  * Fix azurestorage detector (#2207)
  * [chore] Remove omitempty tags on JobProgressMetrics and UnitMetrics (#2204)
  * Add disk buffer tempfile cleanup (#2130)
  * Use bad json in slackwebhooks (#2193)
  * [bug] - close file after reading (#2203)
  * chore: propagate log context to handlers (#2191)
  * feat(privatekey): run checks concurrently (#2139)
  * [fixup] - skip files in the archive handler (#2195)
  * move logic to main Chunks method (#2194)
  * add metrics for gitlab (#2190)
  * [chore] - Refactor common code into a separate function (#2179)
  * Remove java archives from ignored extensions (#2188)
  * [chore] - Compile regex once (#2176) (forwarded request 1133151 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.2:
  * update regex (#2184)
  * Deprecate some detectors (#2186)
  * allow targets for the source manager (#2182)
  * use https for verification endpoints (#2185)
  * remove unnecessary Git cmd check (#2175)
  * [feat] - Remove go-git dependency (#2174)
  * Skip trying to determine MIME type for directories (#2178)
  * fixing how to rotate URL (#2183)
  * Use forked sevenzip (#2180)
  * [thog-1548] add auto redaction for verification errors (#2106)
  * fix(deps): update module github.com/google/go-github/v42 to v57 (#2172)
  * chore(deps): update google-github-actions/auth action to v2 (#2171)
  * skip files we can't scan (#2170)
  * fix(deps): update module google.golang.org/api to v0.152.0 (#2169)
  * [chore] - remove deprecated types (#2168)
  * fix(deps): update module golang.org/x/oauth2 to v0.15.0 (#2167)
  * fix(deps): update module github.com/aws/aws-sdk-go to v1.48.12 (#2166)
  * fix(deps): update module github.com/xanzy/go-gitlab to v0.94.0 (#2165)
  * fix(deps): update module github.com/trufflesecurity/disk-buffer-reader to v0.2.1 (#2163)
  * Ignore images and binaries (#2162)
  * [chore] - Increase pagination limit (#2154)
  * fix(deps): update module github.com/google/go-containerregistry to v0.17.0 (#2160)
  * update forager types (#2159)
  * fix(deps): update module github.com/go-logr/zapr to v1.3.0 (#2158)
  * fix(deps): update module github.com/fatih/color to v1.16.0 (#2155)
  * fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.0 (#2153)
  * fix(deps): update module github.com/aws/aws-sdk-go to v1.48.11 (#2152)
  * fix(deps): update module github.com/alecthomas/kingpin/v2 to v2.4.0 (#2151)
  * fix(deps): update module cloud.google.com/go/storage to v1.35.1 (#2150) (forwarded request 1131604 from ph03nix)

• Files Changed
• Browse Source

- Update to version 3.63.1: (forwarded request 1129708 from jfkw)

• Files Changed
• Browse Source

New package trufflehog 3.62.0 is a CLI tool to find exposed secrets in source, container images and cloud resources.

• Browse Source