Mick Grove
7237a931d5
v1.73.0
2026-01-01 22:24:57 -08:00
Mick Grove
58b17c21ac
reducing false positives
2025-11-24 09:33:58 -08:00
Mick Grove
f9d75eaadd
- Skip reporting MongoDB and Postgres findings when their connection strings cannot be parsed, even when validation is disabled.
...
- Improve MySQL detection by broadening URI coverage and adding live validation that skips clearly invalid connection strings.
2025-11-15 08:11:25 -08:00
Mick Grove
9c4e459a14
updated ci
2025-11-06 16:22:35 -08:00
Mick Grove
f606f59f93
Added an optional exclude_words list to PatternRequirements so matches containing case-insensitive placeholder words are filtered out, with accompanying tests to cover the new behavior.
2025-11-05 17:19:11 -08:00
Mick Grove
6a5a62a5b5
Added an optional exclude_words list to PatternRequirements so matches containing case-insensitive placeholder words are filtered out, with accompanying tests to cover the new behavior.
2025-11-04 13:07:24 -08:00
Mick Grove
0f953f59a5
pattern_requirements for rules — Post-regex character-class gating to cut false positives without lookarounds. Authors can now require minimum counts of digits, uppercase, lowercase, and special characters, with an optional custom special-char set.
...
Why: Hyperscan doesn’t support lookaheads/behinds, so many “must contain X and Y” checks had to be baked into the regex (hurting readability) or were impossible. pattern_requirements applies lightweight, in-memory checks after a match is found, keeping patterns fast and clean.
2025-11-04 13:55:31 -05:00
Mick Grove
6a1d9e4142
- Enabled MongoDB URI validation
...
- AWS + GCP validators now respect HTTPS_PROXY and share a consistent user agent across AWS, GCP, and HTTP validation
2025-09-09 16:45:02 -07:00
Mick Grove
9b4856d7d5
Fixed Gitlab support. Added pre-commit and pre-receive installation scripts.
2025-07-23 19:57:33 -07:00
Mick Grove
a6b64307bf
Updated formatting of several rules
2025-06-26 11:31:41 -07:00
Mick Grove
fc4aee9e41
preparing for v1.12
2025-06-24 17:17:16 -07:00
