Renovate: Update all non-major dependencies #48
Loading…
Reference in a new issue
No description provided.
Delete branch "renovate-all-minor-patch"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
This PR contains the following updates:
3.3.3-r0
->3.3.6-r0
v8.18.4
->v8.21.3
3.12.4-alpine3.20
->3.13.1-alpine3.20
5.0.0
->5.1.0
Note: The
pre-commit
manager in Renovate is not supported by thepre-commit
maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.Release Notes
gitleaks/gitleaks (gitleaks/gitleaks)
v8.21.3
Compare Source
Changelog
a9e6d8c
go mod 1.232f73a3e
Ensure keywords are downcased (#1633)f696605
feat: add settlemint api keys detection (#1663)0bf13fc
feat(dir): better chunking (#1665)83e99ba
feat(report): allow user-defined templates (#1650)e393d29
Add support for GitLab routable tokens (#1656)263ce82
Add freemius secret key detection (#1611)3c0e068
fix(kubernetes): only match 'kind: secret' (#1649)f3adda0
feat: use STDOUT when report file not specified (#1642)ed205a5
fix(dir): skip opening file&dir if allowlist matches (#1653)6018012
fix: increase chunk size 10kb -> 100kb (#1652)7f77987
feat: detect sentry.io tokens in the new format (#1640)48a2e0e
refactor: pre-commit hooks (#1627)4e303d0
fix(easypost): only detect tokens of correct length (#1628)c1add1d
feat(dir): continue on permission error (#1621)202106a
Add human readable description for curl rules (#1625)8e94f98
Add option to includeLine
field in report (#1616)dbb42a7
hm (great comment)2599460
Update README.md8ffb980
nop for stupid build4181ad6
Add new jira api token pattern (#1601)48ea14b
feat: update global & generic allowlist (#1618)81f0002
fix(vault-service-token): ensure that TPS contains digits (#1614)c11adc9
Generate comprehensive secret samples (#1484)d1d9054
fix(aws): detect token in url (#1615)5fe58bf
fix(rules): entropy, uppercase in samples (#1593)5c2e813
feat: tweak rules (#1608)v8.21.2
Compare Source
Changelog
43fae35
feat(rules): create Octopus Deploy api key (#1602)a158e4f
fix(aws-access-token): only match if correct length (#1584)b6e0eee
fix(config): ignore jquery/swagger w/o version (#1607)722e7d8
feat: add new GitLab tokens (#1560)961f2e6
feat(generic-api-key): tune false positives (#1606)e734fcf
Create .gitleaks.toml (#1605)7206d6b
feat(curl): tweak tps and fps (#1603)2db25f1
feat(config): ignore swagger-ui assets (#1604)e97695b
feat(generic-api-key): exclude keywords (#1587)0afb525
feat(okta): bump entropy to 4 (#1599)2068870
feat: update global allowlist (#1597)8cf93b9
refactor(allowlist): deduplicate commits & keywords (#1596)50c2818
feat(config): ignore jquery static assets (#1595)455ae0a
More rule fixes (#1586)5407c44
chore: log skipped symlinks (#1591)d03d6c4
feat: match left side of identifier (#1585)851c11a
what secrets?8cfa6b2
fix(rules): add entropy (#1580)9152eaa
feat(aws): add entropy & allowlist (#1582)93acc6e
feat(rules): add 1password token (#1583)83a5724
feat(config): add curl header rule (#1576)v8.21.1
Compare Source
Changelog
cf5334f
feat: add curl basic auth rule (#1575)d07b394
Update spelling in README.md (#1574)5c03fa4
refactor(allowlist): use iota for condition (#1569)12034a7
refactor(config): temporarily switch to [rules.allowlist] (#1573)v8.21.0
Compare Source
Changelog
aabe381
Define multiple allowlists per rule (#1496)8ea6085
build: upgrade gitleaks/go-gitdiff to v0.9.1 (#1559)be9d0f8
Fix rule extension (#1556)9988e52
Update base config allowlist (#1555)8fb39ba
feat(azure): detect Azure AD client secrets (#1199)14c924d
chore: match gitleaks.toml anywhere (#1553)respect @rgmz @9999years
⚠️ Note: you may find some findings that were previously ignored if using .gitleaksignore pop up in your scans. This is due to a fix for a long standing bug where gitleaks would incorrectly report merge commit SHAs instead of the actual commit where a secret was introduced. See the following issues for more context:
v8.20.1
Compare Source
Changelog
b2fbaeb
feat(config): add placeholder regexes to global allowlist (#1547)00bb821
feat: add PrivateAI rule (#1548)445abe3
Bump golang verion used in docker build to match version specified in go.mod (#1551)1a2f656
feat: add cohere rule (#1549)82d737d
feat(generate): generate global (#1546)f6e5499
Feat/nuget config password rule (#1540)v8.20.0
Compare Source
Changelog
bf8a49f
Make private key check less greedy and include fifth dash (#1440)9c354f5
print tags if they exist2278a2a
Decode Base64 (#1488)c5b15c9
refactor(config): keyword map (#1538)a971a32
fix: use regexTarget for extend config (#1536)a0f2f46
feat: bump go to 1.22 (#1537)4e8d7d3
fix: handle pre-commit and staged (#1533)f8dcd83
Bugfix/1352 incorrect report multiple lines (#1501)Huge huge thanks to @bplaxco for supporting b64 decoding, @recreator66 for bug fixes, and to @rgmz for his continued support of the project in the form of PRs and reviews. Thanks you!
New Feature: Decoding
Sometimes secrets are encoded in a way that can make them difficult to find
with just regex. Now you can tell gitleaks to automatically find and decode
encoded text. The flag
--max-decode-depth
enables this feature (the defaultvalue "0" means the feature is disabled by default).
Recursive decoding is supported since decoded text can also contain encoded
text. The flag
--max-decode-depth
sets the recursion limit. Recursion stopswhen there are no new segments of encoded text to decode, so setting a really
high max depth doesn't mean it will make that many passes. It will only make as
many as it needs to decode the text. Overall, decoding only minimally increases
scan times.
The findings for encoded text differ from normal findings in the following
ways:
include that as well
decoded:<encoding>
anddecode-depth:<depth>
Currently supported encodings:
base64
(both standard and base64url)v8.19.3
Compare Source
Changelog
ed19c4e
fix(config): extend allowlist & handle extend when validating (#1524)989ef19
refactor(kubernetes-secret): tweak variable chars (#1520)191eb43
Revert "remove validate config test temporarily" (#1529)78f7d3f
feat: create fly.io rule (#1528)7098f6d
fix: to many false-positive for gltf files, add gltf suffix to allowlist (#1527)97dbe1e
Add support in .gitleaksignore file comment strings (#1425) (#1502)9e06824
Restrict Etsy keywords (#1491)db78260
feat(github): add entropy to rule (#1489)df126a7
feat(gcp): update api key rule (#1481)75dd70e
fix(hashicorp): ignore common fps (#1498)8510d39
fix(square): make prefix case sensitive (#1469)3698060
refactor(kubernetes-secret): collapse rules and update regex (#1462)v8.19.2
Compare Source
Changelog
128cd22
fix(rule): comment out errant validation case (#1509)1a6d2b0
remove validate config test temporarily0874ebc
Update README.mdv8.19.1
Compare Source
Changelog
9463ffa
fix flag access (#1506)v8.19.0
Compare Source
Changelog
44ad62e
Deprecatedetect
andprotect
. Addgit
,dir
,stdin
(#1504) HEY THIS IS AN IMPORTANT CHANGE. If it breaks some stuff... sorry, I'll fix it asap, just open an issue and make sure to ping me. The change is meant to be backwards compatible.e93a7c0
Update Harness rules to add _ and - in the account ID part. (#1503)4e43d11
chore: fix gl workflow error (#1487)bd81872
Make config generation utils public (#1480)3be7faa
Update Hashicorp Vault token pattern (#1483)1aae66d
feat(config): update rule validation (#1466)6dfcf5e
Update .gitleaksignoref361c5e
fix(detect): handle EOF with bytes (#1472)8a1ca9e
Added poetry.lock to default allowlist paths (#1474)525c4b4
refactor(sarif): remove |name| and change |shortDescription| (#1473)c0fda43
Use rule id for config validation error (#1463)d3c4b90
Use first non-empty group ifsecretGroup
isn't set (#1459)b4009bf
chore: remove unnecessary capture groups (#1460)80bd177
Return non-0 exit code fromDetectGit
(#1461)0334ec1
add gradle verification-metadata.xml to global allowlist (#1446)c1345e1
feat(openshift): add user token (#1449)7697b3e
(feat): Adding secret detection rule for Kubernetes secrets (#1454)26f3469
add version to defaultbc979de
Add go.work and go.work.sum to global allowlist (#1353)b899915
Add harness PAT and SAT rules (#1406)4c5195b
Update README.mdConfiguration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Renovate Bot.
f9ec3a62a6
to1b5ec71942
1b5ec71942
toeb7edc7f70
eb7edc7f70
toeeb39f3ce3
eeb39f3ce3
to25a470b941
Renovate: Update python Docker tag to v3.12.5to Renovate: Update python Docker tag to v3.12.625a470b941
to3e28ea2f66
3e28ea2f66
to927eab7824
Renovate: Update python Docker tag to v3.12.6to Renovate: Update all non-major dependencies927eab7824
to7d218e03f9
7d218e03f9
to3d16ae479c
3d16ae479c
toe715fe28c7
e715fe28c7
to1422365042
1422365042
toff57110cd7
ff57110cd7
toc97f40e5e6
c97f40e5e6
to57b9d3ef8b
57b9d3ef8b
to4246982f02
4246982f02
to10319284c6
10319284c6
toefe4c76688
efe4c76688
to2b8079d658
2b8079d658
to0918302f07
0918302f07
to1bb61e5955
1bb61e5955
to8e108063c1
8e108063c1
tobeca01125e
beca01125e
to68cc4a6c2f
View command line instructions
Checkout
From your project repository, check out a new branch and test the changes.Merge
Merge the changes and update on Forgejo.Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.