gitleaks

Changelog

• c0caab0 add --max-target-megabytes : maximum size for a file/blob to be scanned (#1003)
• 2678a54 Add detection rules for DigitalOcean tokens (#1002)
• eb2bfe5 Exclude dacpac refactorlogs (#990)
• 55d1da1 Output number of commits at info-level. (#991)
• 177e9f4 Detect Slack Workflow Webhook URLs (#989)
• e93d8cb Upgrade go version to 1.19 (#987)
• db43f9a Minor cleanup to error handling and logging (#985)

Thanks to @roma8389 @michenriksen @JoostVoskuil @alexgit2k @Becojo @nnnkkk7 @mojotx @weineran 💪🏻

Changelog

• 7dbfe8d Adding quiet mode to silence banner (#852)
• fc98cbf Issue #980: Add support for Telegram Bot API Token (#981)
• 3f0293d add rule for microsoft teams webhooks (#970)
• 4f6ee2b Add baseline (#975)
• 6202053 Add pre-commit autoupdate command to README.md (#978)
• c8681e4 refactor: more precise rule for private keys (#930)

Thanks to @maltemorgenstern @b4bay @durkinza @akashchandwani @very-doge-wow @gawansch 👍🏻

Changelog

• b934591 update gitleaksignore
• 8622c39 add fingerprint to output
• 96eed6a Pretty output (#973)
• 7d9dd26 Update version in readme file (#972)

If this change causes outrage I can always add a --legacy-output option.

Changelog

• e47867d ignore empty files (#965)

Changelog

• adf512e Add grafana tokens rules (#959)
• e35cb67 add prefect and readme rules (#961)

Changelog

• b6b7cfb bump gitdiff, add git.Err state, better log messages (#954)

Changelog

• 1b3f10c Feat/add fingerprint no git (#952)

Changelog

• 6748a89 safe file checking (#946)

Changelog

• b8f236c Changed fingerprint to explicit concatenation of commit, file, rule-id, and start line (#944)

Changelog

• 3bace4c Feat/ignore finding (#938) (see https://github.com/zricethezav/gitleaks#gitleaksignore)
• e890a8e add jwt rule (#943)
• 31a8e9d gitleaks allow docs (#941)
• b1853bd Add new rules for vault tokens (#919)
• cd52267 Feature/add sidekiq rules (#933)

Changelog

• 31650f0 Feature: Adding the ability to extend configuration files (#926)
• 0d47165 Add fix for issue #915 (#916)

Example partial base config demonstrating how you can extend configs:

# Title for the gitleaks configuration file.
title = "8.9.0 example  title"

# Extend the base (this) configuration. When you extend a configuration
# the base rules take precendence over the extended rules. I.e, if there are
# duplicate rules in both the base configuration and the extended configuration
# the base rules will override the extended rules.
# Another thing to know with extending configurations is you can chain together
# multiple configuration files to a depth of 2. Allowlist arrays are appended
# and can contain duplicates.
# useDefault and path can NOT be used at the same time. Choose one.
[extend]
# useDefault will extend the base configuration with the default gitleaks config:
# https://github.com/zricethezav/gitleaks/blob/master/config/gitleaks.toml
useDefault = true
# or you can supply a path to a configuration. Path is relative to where gitleaks
# was invoked, not the location of the base config.
path = "common_config.toml"


# ... 
# rules, allowlists, etc

Changelog

• 1fc27ee adding access to generic rule keywords and identifiers
• f4ddeda Fix proper names capitalization (#907)
• 6210a7e Add multi platform build (#897)

Changelog

• 1297b41 Added travis ci token
• d44cb91 Fix id and description for twitter tokens (#905)
• efdc774 Added okta, codecov, zendesk, and updating Atlassian's rule to include jira keyword (#904)
• e78a22e Fix Plaid, added Plaid access token (#903)
• 9cc19ec Added airtable and adafruit (#902)

Changelog

• 05c165d Fixes accidental type typos while translating rules from validation spreadsheet, adds bittrex rule

Changelog

This release adds 40 new rules and fixes some old rules including for the following providers:

• coinbase
• confluent
• datadog
• droneci
• Etsy
• flickr
• finnhub
• FreshBooks
• Google (GCP API Key)
• Gitter
• Kraken
• Kucoin
• LaunchDarkly
• Mattermost
• Netlify
• NYTimes
• Plaid
• RapidAPI
• Sendbird
• Sentry
• Square
• Squarespace
• Sumo Logic
• Twitter (fixed old rules)
• Yandex

See full config: https://github.com/zricethezav/gitleaks/blob/master/config/gitleaks.toml. If you're looking to add some new rules check out
the contributing guidelines here: https://github.com/zricethezav/gitleaks/blob/master/CONTRIBUTING.md

• f6a87ca Remove ssn allowlist (#898)
• 73a3cf8 Adding a bunch of new rules, update allowlist to include node_modules… (#896)
• d196b83 contributing guidelines first draft (#895)
• 35f2ea5 Lint python commit script to satisfy PEP8 (#893)

Changelog

• c14af5f maintain parity with recent changes... need to create rule contributing guidelines (#891)
• 06b1396 Fix duplicate TOML Rules and IDs (#889)

Changelog

• c3b7932 fix git unsafe directory (#883)
• 82e409a Limit newlines regex (#881)

Changelog

• 0eb57cb add combo to stopwords, update cmd/generate
• 3531887 Fix generic-api-key detected erroneously (zricethezav#877) (#878)
• e9ebde7 ignore end line when comparing generic rules (#879)

Changelog

• 469cd22 updating generic regex and algoia regex (#875)
• 93e72c2 feat: add algolia key support (#866)
• 865478b Improve PlanetScale token detection (#874)
• 0266ab8 Adding JIT Security messages

Changelog

• 61ee7c5 fix no-git bug (#859)