Renovate: Update pre-commit hook gitleaks/gitleaks to v8.27.0 #54
Loading…
Add table
Reference in a new issue
No description provided.
Delete branch "renovate-all-minor-patch"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
This PR contains the following updates:
v8.26.0
->v8.27.0
Note: The
pre-commit
manager in Renovate is not supported by thepre-commit
maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.Release Notes
gitleaks/gitleaks (gitleaks/gitleaks)
v8.27.0
Compare Source
Changelog
782f310
Archive support (#1872)489d13c
Update README.mdd29ee55
Reduce aws-access-token false positives (#1876)611db65
Setpass_filenames
tofalse
for Docker hook (#1850)0589ae0
unicode decoding (#1854)82f7e32
Diagnostics (#1856)f97a9ee
chore: include decoder in debug log (#1853)Got another @bplaxco release. Cheers!
Archive Scanning
Sometimes secrets are packaged within archive files like zip files or tarballs,
making them difficult to discover. Now you can tell gitleaks to automatically
extract and scan the contents of archives. The flag
--max-archive-depth
enables this feature for both
dir
andgit
scan types. The default value of"0" means this feature is disabled by default.
Recursive scanning is supported since archives can also contain other archives.
The
--max-archive-depth
flag sets the recursion limit. Recursion stops whenthere are no new archives to extract, so setting a very high max depth just
sets the potential to go that deep. It will only go as deep as it needs to.
The findings for secrets located within an archive will include the path to the
file inside the archive. Inner paths are separated with
!
.Example finding (shortened for brevity):
This means a secret was detected on line 4 of
files/.env.prod.
which is inarchives/files.tar
which is intestdata/archives/nested.tar.gz
.Currently supported formats:
The compression
and archive
formats supported by mholt's archives package
are supported.
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.
View command line instructions
Checkout
From your project repository, check out a new branch and test the changes.Merge
Merge the changes and update on Forgejo.Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.