Renovate: Update all non-major dependencies #48

Open
renovate wants to merge 1 commit from renovate-all-minor-patch into main
Member

This PR contains the following updates:

Package Type Update Change
alpine_3_20/ruby patch 3.3.3-r0 -> 3.3.6-r0
gitleaks/gitleaks repository minor v8.18.4 -> v8.21.3
python final minor 3.12.4-alpine3.20 -> 3.13.1-alpine3.20
woodpeckerci/plugin-docker-buildx (source) minor 5.0.0 -> 5.1.0

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.


Release Notes

gitleaks/gitleaks (gitleaks/gitleaks)

v8.21.3

Compare Source

Changelog

v8.21.2

Compare Source

Changelog

v8.21.1

Compare Source

Changelog

v8.21.0

Compare Source

Changelog

respect @​rgmz @​9999years

⚠️ Note: you may find some findings that were previously ignored if using .gitleaksignore pop up in your scans. This is due to a fix for a long standing bug where gitleaks would incorrectly report merge commit SHAs instead of the actual commit where a secret was introduced. See the following issues for more context:

v8.20.1

Compare Source

Changelog

v8.20.0

Compare Source

Changelog

Huge huge thanks to @​bplaxco for supporting b64 decoding, @​recreator66 for bug fixes, and to @​rgmz for his continued support of the project in the form of PRs and reviews. Thanks you!

New Feature: Decoding

Sometimes secrets are encoded in a way that can make them difficult to find
with just regex. Now you can tell gitleaks to automatically find and decode
encoded text. The flag --max-decode-depth enables this feature (the default
value "0" means the feature is disabled by default).

Recursive decoding is supported since decoded text can also contain encoded
text. The flag --max-decode-depth sets the recursion limit. Recursion stops
when there are no new segments of encoded text to decode, so setting a really
high max depth doesn't mean it will make that many passes. It will only make as
many as it needs to decode the text. Overall, decoding only minimally increases
scan times.

The findings for encoded text differ from normal findings in the following
ways:

  • The location points the bounds of the encoded text
    • If the rule matches outside the encoded text, the bounds are adjusted to
      include that as well
  • The match and secret contain the decoded value
  • Two tags are added decoded:<encoding> and decode-depth:<depth>

Currently supported encodings:

  • base64 (both standard and base64url)

v8.19.3

Compare Source

Changelog

v8.19.2

Compare Source

Changelog

v8.19.1

Compare Source

Changelog

v8.19.0

Compare Source

Changelog


Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | alpine_3_20/ruby | | patch | `3.3.3-r0` -> `3.3.6-r0` | | [gitleaks/gitleaks](https://github.com/gitleaks/gitleaks) | repository | minor | `v8.18.4` -> `v8.21.3` | | python | final | minor | `3.12.4-alpine3.20` -> `3.13.1-alpine3.20` | | [woodpeckerci/plugin-docker-buildx](https://codeberg.org/woodpecker-plugins/docker-buildx-security) ([source](https://codeberg.org/woodpecker-plugins/docker-buildx-security.git)) | | minor | `5.0.0` -> `5.1.0` | Note: The `pre-commit` manager in Renovate is not supported by the `pre-commit` maintainers or community. Please do not report any problems there, instead [create a Discussion in the Renovate repository](https://github.com/renovatebot/renovate/discussions/new) if you have any questions. --- ### Release Notes <details> <summary>gitleaks/gitleaks (gitleaks/gitleaks)</summary> ### [`v8.21.3`](https://github.com/gitleaks/gitleaks/releases/tag/v8.21.3) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.21.2...v8.21.3) #### Changelog - [`a9e6d8c`](https://github.com/gitleaks/gitleaks/commit/a9e6d8c) go mod 1.23 - [`2f73a3e`](https://github.com/gitleaks/gitleaks/commit/2f73a3e) Ensure keywords are downcased ([#&#8203;1633](https://github.com/gitleaks/gitleaks/issues/1633)) - [`f696605`](https://github.com/gitleaks/gitleaks/commit/f696605) feat: add settlemint api keys detection ([#&#8203;1663](https://github.com/gitleaks/gitleaks/issues/1663)) - [`0bf13fc`](https://github.com/gitleaks/gitleaks/commit/0bf13fc) feat(dir): better chunking ([#&#8203;1665](https://github.com/gitleaks/gitleaks/issues/1665)) - [`83e99ba`](https://github.com/gitleaks/gitleaks/commit/83e99ba) feat(report): allow user-defined templates ([#&#8203;1650](https://github.com/gitleaks/gitleaks/issues/1650)) - [`e393d29`](https://github.com/gitleaks/gitleaks/commit/e393d29) Add support for GitLab routable tokens ([#&#8203;1656](https://github.com/gitleaks/gitleaks/issues/1656)) - [`263ce82`](https://github.com/gitleaks/gitleaks/commit/263ce82) Add freemius secret key detection ([#&#8203;1611](https://github.com/gitleaks/gitleaks/issues/1611)) - [`3c0e068`](https://github.com/gitleaks/gitleaks/commit/3c0e068) fix(kubernetes): only match 'kind: secret' ([#&#8203;1649](https://github.com/gitleaks/gitleaks/issues/1649)) - [`f3adda0`](https://github.com/gitleaks/gitleaks/commit/f3adda0) feat: use STDOUT when report file not specified ([#&#8203;1642](https://github.com/gitleaks/gitleaks/issues/1642)) - [`ed205a5`](https://github.com/gitleaks/gitleaks/commit/ed205a5) fix(dir): skip opening file\&dir if allowlist matches ([#&#8203;1653](https://github.com/gitleaks/gitleaks/issues/1653)) - [`6018012`](https://github.com/gitleaks/gitleaks/commit/6018012) fix: increase chunk size 10kb -> 100kb ([#&#8203;1652](https://github.com/gitleaks/gitleaks/issues/1652)) - [`7f77987`](https://github.com/gitleaks/gitleaks/commit/7f77987) feat: detect sentry.io tokens in the new format ([#&#8203;1640](https://github.com/gitleaks/gitleaks/issues/1640)) - [`48a2e0e`](https://github.com/gitleaks/gitleaks/commit/48a2e0e) refactor: pre-commit hooks ([#&#8203;1627](https://github.com/gitleaks/gitleaks/issues/1627)) - [`4e303d0`](https://github.com/gitleaks/gitleaks/commit/4e303d0) fix(easypost): only detect tokens of correct length ([#&#8203;1628](https://github.com/gitleaks/gitleaks/issues/1628)) - [`c1add1d`](https://github.com/gitleaks/gitleaks/commit/c1add1d) feat(dir): continue on permission error ([#&#8203;1621](https://github.com/gitleaks/gitleaks/issues/1621)) - [`202106a`](https://github.com/gitleaks/gitleaks/commit/202106a) Add human readable description for curl rules ([#&#8203;1625](https://github.com/gitleaks/gitleaks/issues/1625)) - [`8e94f98`](https://github.com/gitleaks/gitleaks/commit/8e94f98) Add option to include `Line` field in report ([#&#8203;1616](https://github.com/gitleaks/gitleaks/issues/1616)) - [`dbb42a7`](https://github.com/gitleaks/gitleaks/commit/dbb42a7) hm (great comment) - [`2599460`](https://github.com/gitleaks/gitleaks/commit/2599460) Update README.md - [`8ffb980`](https://github.com/gitleaks/gitleaks/commit/8ffb980) nop for stupid build - [`4181ad6`](https://github.com/gitleaks/gitleaks/commit/4181ad6) Add new jira api token pattern ([#&#8203;1601](https://github.com/gitleaks/gitleaks/issues/1601)) - [`48ea14b`](https://github.com/gitleaks/gitleaks/commit/48ea14b) feat: update global & generic allowlist ([#&#8203;1618](https://github.com/gitleaks/gitleaks/issues/1618)) - [`81f0002`](https://github.com/gitleaks/gitleaks/commit/81f0002) fix(vault-service-token): ensure that TPS contains digits ([#&#8203;1614](https://github.com/gitleaks/gitleaks/issues/1614)) - [`c11adc9`](https://github.com/gitleaks/gitleaks/commit/c11adc9) Generate comprehensive secret samples ([#&#8203;1484](https://github.com/gitleaks/gitleaks/issues/1484)) - [`d1d9054`](https://github.com/gitleaks/gitleaks/commit/d1d9054) fix(aws): detect token in url ([#&#8203;1615](https://github.com/gitleaks/gitleaks/issues/1615)) - [`5fe58bf`](https://github.com/gitleaks/gitleaks/commit/5fe58bf) fix(rules): entropy, uppercase in samples ([#&#8203;1593](https://github.com/gitleaks/gitleaks/issues/1593)) - [`5c2e813`](https://github.com/gitleaks/gitleaks/commit/5c2e813) feat: tweak rules ([#&#8203;1608](https://github.com/gitleaks/gitleaks/issues/1608)) ### [`v8.21.2`](https://github.com/gitleaks/gitleaks/releases/tag/v8.21.2) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.21.1...v8.21.2) #### Changelog - [`43fae35`](https://github.com/gitleaks/gitleaks/commit/43fae35) feat(rules): create Octopus Deploy api key ([#&#8203;1602](https://github.com/gitleaks/gitleaks/issues/1602)) - [`a158e4f`](https://github.com/gitleaks/gitleaks/commit/a158e4f) fix(aws-access-token): only match if correct length ([#&#8203;1584](https://github.com/gitleaks/gitleaks/issues/1584)) - [`b6e0eee`](https://github.com/gitleaks/gitleaks/commit/b6e0eee) fix(config): ignore jquery/swagger w/o version ([#&#8203;1607](https://github.com/gitleaks/gitleaks/issues/1607)) - [`722e7d8`](https://github.com/gitleaks/gitleaks/commit/722e7d8) feat: add new GitLab tokens ([#&#8203;1560](https://github.com/gitleaks/gitleaks/issues/1560)) - [`961f2e6`](https://github.com/gitleaks/gitleaks/commit/961f2e6) feat(generic-api-key): tune false positives ([#&#8203;1606](https://github.com/gitleaks/gitleaks/issues/1606)) - [`e734fcf`](https://github.com/gitleaks/gitleaks/commit/e734fcf) Create .gitleaks.toml ([#&#8203;1605](https://github.com/gitleaks/gitleaks/issues/1605)) - [`7206d6b`](https://github.com/gitleaks/gitleaks/commit/7206d6b) feat(curl): tweak tps and fps ([#&#8203;1603](https://github.com/gitleaks/gitleaks/issues/1603)) - [`2db25f1`](https://github.com/gitleaks/gitleaks/commit/2db25f1) feat(config): ignore swagger-ui assets ([#&#8203;1604](https://github.com/gitleaks/gitleaks/issues/1604)) - [`e97695b`](https://github.com/gitleaks/gitleaks/commit/e97695b) feat(generic-api-key): exclude keywords ([#&#8203;1587](https://github.com/gitleaks/gitleaks/issues/1587)) - [`0afb525`](https://github.com/gitleaks/gitleaks/commit/0afb525) feat(okta): bump entropy to 4 ([#&#8203;1599](https://github.com/gitleaks/gitleaks/issues/1599)) - [`2068870`](https://github.com/gitleaks/gitleaks/commit/2068870) feat: update global allowlist ([#&#8203;1597](https://github.com/gitleaks/gitleaks/issues/1597)) - [`8cf93b9`](https://github.com/gitleaks/gitleaks/commit/8cf93b9) refactor(allowlist): deduplicate commits & keywords ([#&#8203;1596](https://github.com/gitleaks/gitleaks/issues/1596)) - [`50c2818`](https://github.com/gitleaks/gitleaks/commit/50c2818) feat(config): ignore jquery static assets ([#&#8203;1595](https://github.com/gitleaks/gitleaks/issues/1595)) - [`455ae0a`](https://github.com/gitleaks/gitleaks/commit/455ae0a) More rule fixes ([#&#8203;1586](https://github.com/gitleaks/gitleaks/issues/1586)) - [`5407c44`](https://github.com/gitleaks/gitleaks/commit/5407c44) chore: log skipped symlinks ([#&#8203;1591](https://github.com/gitleaks/gitleaks/issues/1591)) - [`d03d6c4`](https://github.com/gitleaks/gitleaks/commit/d03d6c4) feat: match left side of identifier ([#&#8203;1585](https://github.com/gitleaks/gitleaks/issues/1585)) - [`851c11a`](https://github.com/gitleaks/gitleaks/commit/851c11a) what secrets? - [`8cfa6b2`](https://github.com/gitleaks/gitleaks/commit/8cfa6b2) fix(rules): add entropy ([#&#8203;1580](https://github.com/gitleaks/gitleaks/issues/1580)) - [`9152eaa`](https://github.com/gitleaks/gitleaks/commit/9152eaa) feat(aws): add entropy & allowlist ([#&#8203;1582](https://github.com/gitleaks/gitleaks/issues/1582)) - [`93acc6e`](https://github.com/gitleaks/gitleaks/commit/93acc6e) feat(rules): add 1password token ([#&#8203;1583](https://github.com/gitleaks/gitleaks/issues/1583)) - [`83a5724`](https://github.com/gitleaks/gitleaks/commit/83a5724) feat(config): add curl header rule ([#&#8203;1576](https://github.com/gitleaks/gitleaks/issues/1576)) ### [`v8.21.1`](https://github.com/gitleaks/gitleaks/releases/tag/v8.21.1) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.21.0...v8.21.1) #### Changelog - [`cf5334f`](https://github.com/gitleaks/gitleaks/commit/cf5334f) feat: add curl basic auth rule ([#&#8203;1575](https://github.com/gitleaks/gitleaks/issues/1575)) - [`d07b394`](https://github.com/gitleaks/gitleaks/commit/d07b394) Update spelling in README.md ([#&#8203;1574](https://github.com/gitleaks/gitleaks/issues/1574)) - [`5c03fa4`](https://github.com/gitleaks/gitleaks/commit/5c03fa4) refactor(allowlist): use iota for condition ([#&#8203;1569](https://github.com/gitleaks/gitleaks/issues/1569)) - [`12034a7`](https://github.com/gitleaks/gitleaks/commit/12034a7) refactor(config): temporarily switch to \[rules.allowlist] ([#&#8203;1573](https://github.com/gitleaks/gitleaks/issues/1573)) ### [`v8.21.0`](https://github.com/gitleaks/gitleaks/releases/tag/v8.21.0) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.20.1...v8.21.0) #### Changelog - [`aabe381`](https://github.com/gitleaks/gitleaks/commit/aabe381) Define multiple allowlists per rule ([#&#8203;1496](https://github.com/gitleaks/gitleaks/issues/1496)) - [`8ea6085`](https://github.com/gitleaks/gitleaks/commit/8ea6085) build: upgrade gitleaks/go-gitdiff to v0.9.1 ([#&#8203;1559](https://github.com/gitleaks/gitleaks/issues/1559)) - [`be9d0f8`](https://github.com/gitleaks/gitleaks/commit/be9d0f8) Fix rule extension ([#&#8203;1556](https://github.com/gitleaks/gitleaks/issues/1556)) - [`9988e52`](https://github.com/gitleaks/gitleaks/commit/9988e52) Update base config allowlist ([#&#8203;1555](https://github.com/gitleaks/gitleaks/issues/1555)) - [`8fb39ba`](https://github.com/gitleaks/gitleaks/commit/8fb39ba) feat(azure): detect Azure AD client secrets ([#&#8203;1199](https://github.com/gitleaks/gitleaks/issues/1199)) - [`14c924d`](https://github.com/gitleaks/gitleaks/commit/14c924d) chore: match gitleaks.toml anywhere ([#&#8203;1553](https://github.com/gitleaks/gitleaks/issues/1553)) respect [@&#8203;rgmz](https://github.com/rgmz) [@&#8203;9999years](https://github.com/9999years) ⚠️ Note: you may find some findings that were previously ignored if using .gitleaksignore pop up in your scans. This is due to a fix for a long standing bug where gitleaks would incorrectly report *merge* commit SHAs instead of the actual commit where a secret was introduced. See the following issues for more context: - https://github.com/gitleaks/gitleaks/issues/1333 - https://github.com/gitleaks/gitleaks/pull/1559 - https://github.com/gitleaks/gitleaks/issues/1570#issuecomment-2413947146 ### [`v8.20.1`](https://github.com/gitleaks/gitleaks/releases/tag/v8.20.1) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.20.0...v8.20.1) #### Changelog - [`b2fbaeb`](https://github.com/gitleaks/gitleaks/commit/b2fbaeb) feat(config): add placeholder regexes to global allowlist ([#&#8203;1547](https://github.com/gitleaks/gitleaks/issues/1547)) - [`00bb821`](https://github.com/gitleaks/gitleaks/commit/00bb821) feat: add PrivateAI rule ([#&#8203;1548](https://github.com/gitleaks/gitleaks/issues/1548)) - [`445abe3`](https://github.com/gitleaks/gitleaks/commit/445abe3) Bump golang verion used in docker build to match version specified in go.mod ([#&#8203;1551](https://github.com/gitleaks/gitleaks/issues/1551)) - [`1a2f656`](https://github.com/gitleaks/gitleaks/commit/1a2f656) feat: add cohere rule ([#&#8203;1549](https://github.com/gitleaks/gitleaks/issues/1549)) - [`82d737d`](https://github.com/gitleaks/gitleaks/commit/82d737d) feat(generate): generate global ([#&#8203;1546](https://github.com/gitleaks/gitleaks/issues/1546)) - [`f6e5499`](https://github.com/gitleaks/gitleaks/commit/f6e5499) Feat/nuget config password rule ([#&#8203;1540](https://github.com/gitleaks/gitleaks/issues/1540)) ### [`v8.20.0`](https://github.com/gitleaks/gitleaks/releases/tag/v8.20.0) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.19.3...v8.20.0) #### Changelog - [`bf8a49f`](https://github.com/gitleaks/gitleaks/commit/bf8a49f) Make private key check less greedy and include fifth dash ([#&#8203;1440](https://github.com/gitleaks/gitleaks/issues/1440)) - [`9c354f5`](https://github.com/gitleaks/gitleaks/commit/9c354f5) print tags if they exist - [`2278a2a`](https://github.com/gitleaks/gitleaks/commit/2278a2a) Decode Base64 ([#&#8203;1488](https://github.com/gitleaks/gitleaks/issues/1488)) - [`c5b15c9`](https://github.com/gitleaks/gitleaks/commit/c5b15c9) refactor(config): keyword map ([#&#8203;1538](https://github.com/gitleaks/gitleaks/issues/1538)) - [`a971a32`](https://github.com/gitleaks/gitleaks/commit/a971a32) fix: use regexTarget for extend config ([#&#8203;1536](https://github.com/gitleaks/gitleaks/issues/1536)) - [`a0f2f46`](https://github.com/gitleaks/gitleaks/commit/a0f2f46) feat: bump go to 1.22 ([#&#8203;1537](https://github.com/gitleaks/gitleaks/issues/1537)) - [`4e8d7d3`](https://github.com/gitleaks/gitleaks/commit/4e8d7d3) fix: handle pre-commit and staged ([#&#8203;1533](https://github.com/gitleaks/gitleaks/issues/1533)) - [`f8dcd83`](https://github.com/gitleaks/gitleaks/commit/f8dcd83) Bugfix/1352 incorrect report multiple lines ([#&#8203;1501](https://github.com/gitleaks/gitleaks/issues/1501)) Huge huge thanks to [@&#8203;bplaxco](https://github.com/bplaxco) for supporting b64 decoding, [@&#8203;recreator66](https://github.com/recreator66) for bug fixes, and to [@&#8203;rgmz](https://github.com/rgmz) for his continued support of the project in the form of PRs and reviews. Thanks you! ##### New Feature: [Decoding](https://github.com/gitleaks/gitleaks/pull/1488) Sometimes secrets are encoded in a way that can make them difficult to find with just regex. Now you can tell gitleaks to automatically find and decode encoded text. The flag `--max-decode-depth` enables this feature (the default value "0" means the feature is disabled by default). Recursive decoding is supported since decoded text can also contain encoded text. The flag `--max-decode-depth` sets the recursion limit. Recursion stops when there are no new segments of encoded text to decode, so setting a really high max depth doesn't mean it will make that many passes. It will only make as many as it needs to decode the text. Overall, decoding only minimally increases scan times. The findings for encoded text differ from normal findings in the following ways: - The location points the bounds of the encoded text - If the rule matches outside the encoded text, the bounds are adjusted to include that as well - The match and secret contain the decoded value - Two tags are added `decoded:<encoding>` and `decode-depth:<depth>` Currently supported encodings: - `base64` (both standard and base64url) ### [`v8.19.3`](https://github.com/gitleaks/gitleaks/releases/tag/v8.19.3) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.19.2...v8.19.3) #### Changelog - [`ed19c4e`](https://github.com/gitleaks/gitleaks/commit/ed19c4e) fix(config): extend allowlist & handle extend when validating ([#&#8203;1524](https://github.com/gitleaks/gitleaks/issues/1524)) - [`989ef19`](https://github.com/gitleaks/gitleaks/commit/989ef19) refactor(kubernetes-secret): tweak variable chars ([#&#8203;1520](https://github.com/gitleaks/gitleaks/issues/1520)) - [`191eb43`](https://github.com/gitleaks/gitleaks/commit/191eb43) Revert "remove validate config test temporarily" ([#&#8203;1529](https://github.com/gitleaks/gitleaks/issues/1529)) - [`78f7d3f`](https://github.com/gitleaks/gitleaks/commit/78f7d3f) feat: create fly.io rule ([#&#8203;1528](https://github.com/gitleaks/gitleaks/issues/1528)) - [`7098f6d`](https://github.com/gitleaks/gitleaks/commit/7098f6d) fix: to many false-positive for gltf files, add gltf suffix to allowlist ([#&#8203;1527](https://github.com/gitleaks/gitleaks/issues/1527)) - [`97dbe1e`](https://github.com/gitleaks/gitleaks/commit/97dbe1e) Add support in .gitleaksignore file comment strings ([#&#8203;1425](https://github.com/gitleaks/gitleaks/issues/1425)) ([#&#8203;1502](https://github.com/gitleaks/gitleaks/issues/1502)) - [`9e06824`](https://github.com/gitleaks/gitleaks/commit/9e06824) Restrict Etsy keywords ([#&#8203;1491](https://github.com/gitleaks/gitleaks/issues/1491)) - [`db78260`](https://github.com/gitleaks/gitleaks/commit/db78260) feat(github): add entropy to rule ([#&#8203;1489](https://github.com/gitleaks/gitleaks/issues/1489)) - [`df126a7`](https://github.com/gitleaks/gitleaks/commit/df126a7) feat(gcp): update api key rule ([#&#8203;1481](https://github.com/gitleaks/gitleaks/issues/1481)) - [`75dd70e`](https://github.com/gitleaks/gitleaks/commit/75dd70e) fix(hashicorp): ignore common fps ([#&#8203;1498](https://github.com/gitleaks/gitleaks/issues/1498)) - [`8510d39`](https://github.com/gitleaks/gitleaks/commit/8510d39) fix(square): make prefix case sensitive ([#&#8203;1469](https://github.com/gitleaks/gitleaks/issues/1469)) - [`3698060`](https://github.com/gitleaks/gitleaks/commit/3698060) refactor(kubernetes-secret): collapse rules and update regex ([#&#8203;1462](https://github.com/gitleaks/gitleaks/issues/1462)) ### [`v8.19.2`](https://github.com/gitleaks/gitleaks/releases/tag/v8.19.2) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.19.1...v8.19.2) #### Changelog - [`128cd22`](https://github.com/gitleaks/gitleaks/commit/128cd22) fix(rule): comment out errant validation case ([#&#8203;1509](https://github.com/gitleaks/gitleaks/issues/1509)) - [`1a6d2b0`](https://github.com/gitleaks/gitleaks/commit/1a6d2b0) remove validate config test temporarily - [`0874ebc`](https://github.com/gitleaks/gitleaks/commit/0874ebc) Update README.md ### [`v8.19.1`](https://github.com/gitleaks/gitleaks/releases/tag/v8.19.1) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.19.0...v8.19.1) #### Changelog - [`9463ffa`](https://github.com/gitleaks/gitleaks/commit/9463ffa) fix flag access ([#&#8203;1506](https://github.com/gitleaks/gitleaks/issues/1506)) ### [`v8.19.0`](https://github.com/gitleaks/gitleaks/releases/tag/v8.19.0) [Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.18.4...v8.19.0) #### Changelog - [`44ad62e`](https://github.com/gitleaks/gitleaks/commit/44ad62e) Deprecate `detect` and `protect`. Add `git`, `dir`, `stdin` ([#&#8203;1504](https://github.com/gitleaks/gitleaks/issues/1504)) **HEY THIS IS AN IMPORTANT CHANGE**. If it breaks some stuff... sorry, I'll fix it asap, just open an issue and make sure to ping me. The change is meant to be backwards compatible. - [`e93a7c0`](https://github.com/gitleaks/gitleaks/commit/e93a7c0) Update Harness rules to add \_ and - in the account ID part. ([#&#8203;1503](https://github.com/gitleaks/gitleaks/issues/1503)) - [`4e43d11`](https://github.com/gitleaks/gitleaks/commit/4e43d11) chore: fix gl workflow error ([#&#8203;1487](https://github.com/gitleaks/gitleaks/issues/1487)) - [`bd81872`](https://github.com/gitleaks/gitleaks/commit/bd81872) Make config generation utils public ([#&#8203;1480](https://github.com/gitleaks/gitleaks/issues/1480)) - [`3be7faa`](https://github.com/gitleaks/gitleaks/commit/3be7faa) Update Hashicorp Vault token pattern ([#&#8203;1483](https://github.com/gitleaks/gitleaks/issues/1483)) - [`1aae66d`](https://github.com/gitleaks/gitleaks/commit/1aae66d) feat(config): update rule validation ([#&#8203;1466](https://github.com/gitleaks/gitleaks/issues/1466)) - [`6dfcf5e`](https://github.com/gitleaks/gitleaks/commit/6dfcf5e) Update .gitleaksignore - [`f361c5e`](https://github.com/gitleaks/gitleaks/commit/f361c5e) fix(detect): handle EOF with bytes ([#&#8203;1472](https://github.com/gitleaks/gitleaks/issues/1472)) - [`8a1ca9e`](https://github.com/gitleaks/gitleaks/commit/8a1ca9e) Added poetry.lock to default allowlist paths ([#&#8203;1474](https://github.com/gitleaks/gitleaks/issues/1474)) - [`525c4b4`](https://github.com/gitleaks/gitleaks/commit/525c4b4) refactor(sarif): remove |name| and change |shortDescription| ([#&#8203;1473](https://github.com/gitleaks/gitleaks/issues/1473)) - [`c0fda43`](https://github.com/gitleaks/gitleaks/commit/c0fda43) Use rule id for config validation error ([#&#8203;1463](https://github.com/gitleaks/gitleaks/issues/1463)) - [`d3c4b90`](https://github.com/gitleaks/gitleaks/commit/d3c4b90) Use first non-empty group if `secretGroup` isn't set ([#&#8203;1459](https://github.com/gitleaks/gitleaks/issues/1459)) - [`b4009bf`](https://github.com/gitleaks/gitleaks/commit/b4009bf) chore: remove unnecessary capture groups ([#&#8203;1460](https://github.com/gitleaks/gitleaks/issues/1460)) - [`80bd177`](https://github.com/gitleaks/gitleaks/commit/80bd177) Return non-0 exit code from `DetectGit` ([#&#8203;1461](https://github.com/gitleaks/gitleaks/issues/1461)) - [`0334ec1`](https://github.com/gitleaks/gitleaks/commit/0334ec1) add gradle verification-metadata.xml to global allowlist ([#&#8203;1446](https://github.com/gitleaks/gitleaks/issues/1446)) - [`c1345e1`](https://github.com/gitleaks/gitleaks/commit/c1345e1) feat(openshift): add user token ([#&#8203;1449](https://github.com/gitleaks/gitleaks/issues/1449)) - [`7697b3e`](https://github.com/gitleaks/gitleaks/commit/7697b3e) (feat): Adding secret detection rule for Kubernetes secrets ([#&#8203;1454](https://github.com/gitleaks/gitleaks/issues/1454)) - [`26f3469`](https://github.com/gitleaks/gitleaks/commit/26f3469) add version to default - [`bc979de`](https://github.com/gitleaks/gitleaks/commit/bc979de) Add go.work and go.work.sum to global allowlist ([#&#8203;1353](https://github.com/gitleaks/gitleaks/issues/1353)) - [`b899915`](https://github.com/gitleaks/gitleaks/commit/b899915) Add harness PAT and SAT rules ([#&#8203;1406](https://github.com/gitleaks/gitleaks/issues/1406)) - [`4c5195b`](https://github.com/gitleaks/gitleaks/commit/4c5195b) Update README.md </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4yMS4yIiwidXBkYXRlZEluVmVyIjoiMzkuNzUuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->
renovate added 1 commit 2024-08-08 09:04:27 +02:00
Renovate: Update python Docker tag to v3.12.5
All checks were successful
ci/woodpecker/push/build Pipeline was successful
ci/woodpecker/push/test Pipeline was successful
f9ec3a62a6
renovate force-pushed renovate-all-minor-patch from f9ec3a62a6 to 1b5ec71942 2024-09-04 12:04:28 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 1b5ec71942 to eb7edc7f70 2024-09-04 14:21:08 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from eb7edc7f70 to eeb39f3ce3 2024-09-05 09:05:34 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from eeb39f3ce3 to 25a470b941 2024-09-09 09:08:03 +02:00 Compare
renovate changed title from Renovate: Update python Docker tag to v3.12.5 to Renovate: Update python Docker tag to v3.12.6 2024-09-10 09:07:22 +02:00
renovate force-pushed renovate-all-minor-patch from 25a470b941 to 3e28ea2f66 2024-09-10 09:07:25 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 3e28ea2f66 to 927eab7824 2024-09-13 09:05:02 +02:00 Compare
renovate changed title from Renovate: Update python Docker tag to v3.12.6 to Renovate: Update all non-major dependencies 2024-09-16 09:05:59 +02:00
renovate force-pushed renovate-all-minor-patch from 927eab7824 to 7d218e03f9 2024-09-16 09:06:01 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 7d218e03f9 to 3d16ae479c 2024-09-16 16:04:25 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 3d16ae479c to e715fe28c7 2024-09-26 17:04:49 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from e715fe28c7 to 1422365042 2024-10-02 09:06:35 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 1422365042 to ff57110cd7 2024-10-03 09:03:30 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from ff57110cd7 to c97f40e5e6 2024-10-03 17:03:30 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from c97f40e5e6 to 57b9d3ef8b 2024-10-08 09:04:22 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 57b9d3ef8b to 4246982f02 2024-10-15 09:06:17 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 4246982f02 to 10319284c6 2024-10-18 14:03:35 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from 10319284c6 to efe4c76688 2024-10-21 09:04:10 +02:00 Compare
renovate force-pushed renovate-all-minor-patch from efe4c76688 to 2b8079d658 2024-10-28 15:04:02 +01:00 Compare
renovate force-pushed renovate-all-minor-patch from 2b8079d658 to 0918302f07 2024-11-13 19:32:45 +01:00 Compare
renovate force-pushed renovate-all-minor-patch from 0918302f07 to 1bb61e5955 2024-11-28 15:38:36 +01:00 Compare
renovate force-pushed renovate-all-minor-patch from 1bb61e5955 to 8e108063c1 2024-12-05 10:11:32 +01:00 Compare
renovate force-pushed renovate-all-minor-patch from 8e108063c1 to beca01125e 2024-12-09 10:12:04 +01:00 Compare
renovate force-pushed renovate-all-minor-patch from beca01125e to 68cc4a6c2f 2024-12-20 10:09:15 +01:00 Compare
This pull request can be merged automatically.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin renovate-all-minor-patch:renovate-all-minor-patch
git checkout renovate-all-minor-patch

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git checkout main
git merge --no-ff renovate-all-minor-patch
git checkout renovate-all-minor-patch
git rebase main
git checkout main
git merge --ff-only renovate-all-minor-patch
git checkout renovate-all-minor-patch
git rebase main
git checkout main
git merge --no-ff renovate-all-minor-patch
git checkout main
git merge --squash renovate-all-minor-patch
git checkout main
git merge --ff-only renovate-all-minor-patch
git checkout main
git merge renovate-all-minor-patch
git push origin main
Sign in to join this conversation.
No reviewers
No labels
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: verdigado-images/container-pre-commit#48
No description provided.