eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
76 commits 5 branches 83 tags 53 MiB
Commit graph

76 commits

This branch
This branch
All branches
Author SHA1 Message Date
Mick Grove
352d8ff659 change that hoists the redirect-free reqwest::Client into a single, lazily-initialized static so every call to validate_jwt re-uses the same handle (and therefore the same connection-pool, DNS cache, TLS session cache, etc) 2025-07-14 17:22:51 -07:00
Mick Grove
ee6332a78d change that hoists the redirect-free reqwest::Client into a single, lazily-initialized static so every call to validate_jwt re-uses the same handle (and therefore the same connection-pool, DNS cache, TLS session cache, etc) 2025-07-14 17:22:37 -07:00
Mick Grove
d72452159b Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 17:10:53 -07:00
Mick Grove
77c8940ba2 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 17:09:04 -07:00
Mick Grove
45e735ec89 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 16:55:19 -07:00
Mick Grove
93f1e3b1da JWT validation performs OpenID Connect discovery using the iss claim and verifies signatures via JWKS 2025-07-14 15:31:44 -07:00
Mick Grove
f028180871 Merge remote-tracking branch 'origin/main' into development 
* origin/main:
  fix(digitalocean): regex is case-sensitive
  feat(adafruitio): improve pattern matching
 2025-07-14 13:27:18 -07:00
Mick Grove
eb4407784d
 		Merge pull request #35 from bored-engineer/patch-2 
fix(digitalocean): regex is case-sensitive
 2025-07-14 13:25:02 -07:00
Mick Grove
c05e8a15de
 		Merge pull request #34 from bored-engineer/patch-1 
fix(adafruitio): improve regex
 2025-07-14 13:24:02 -07:00
Mick Grove
3520c5fba5 Added baseline feature with --baseline-file and --manage-baseline flags. Introduced --exclude option for skipping paths 2025-07-14 13:18:24 -07:00
Luke Young
027e6191c7
 		fix(digitalocean): regex is case-sensitive 2025-07-13 17:27:44 -07:00
Luke Young
7c8643db1a
 		feat(adafruitio): improve pattern matching 2025-07-13 17:09:15 -07:00
Mick Grove
0ab21ace99 improved azure storage rule. Added rule to detect TravisCI encrypted values 2025-07-12 22:44:34 -07:00
Mick Grove
4c1cc60722
 		Merge pull request #28 from mongodb/development v1.20.0 
v1.20.0
 2025-07-09 16:34:45 -07:00
Mick Grove
b2a4263669 Added PR review suggestions 2025-07-09 16:00:54 -07:00
Mick Grove
23c0d23722 Set GIT_TERMINAL_PROMPT=0 when cloning git repos 2025-07-09 15:49:03 -07:00
Mick Grove
cadc2e44c5 Set GIT_TERMINAL_PROMPT=0 when cloning git repos 2025-07-09 15:34:36 -07:00
Mick Grove
dcb2191fe8 Added validation for Alibaba rule 2025-07-09 15:03:07 -07:00
Mick Grove
cd4f626502 Added support for HTTP request bodies in rule validation. Added mistral and perplexity rule 2025-07-08 17:49:12 -07:00
Mick Grove
f02b79f25c
 		Merge pull request #23 from mongodb/development v1.19.0 
v1.19.0
 2025-07-02 16:48:11 -07:00
Mick Grove
b13bdacb2f Fixed Gitlab rule which was incorrectly identifying certain tokens as valid 2025-07-02 15:20:50 -07:00
Mick Grove
2280bee6e2 JSON output was missing committer name and email 2025-07-02 15:13:31 -07:00
Mick Grove
c88d99157e
 		Merge pull request #21 from mongodb/development v1.18.1 
v1.18.1
 2025-07-01 11:10:07 -07:00
Mick Grove
81750ad6f0 Restored --version cli argument. Added a test for it 2025-07-01 10:34:14 -07:00
Mick Grove
c6567ee04b Restored --version cli argument. Added a test for it 2025-07-01 10:31:09 -07:00
Mick Grove
cbf5379e03
 		Merge pull request #20 from mongodb/development v1.18.0 
v1.18.0
 2025-06-30 17:45:20 -07:00
Mick Grove
65de1b0290 added rules for deepseek, xai. Removed branding. Added a NOTICE file 2025-06-30 17:04:29 -07:00
Mick Grove
173b13cb64
 		Merge pull request #18 from mongodb/development v1.17.1 
v1.17.1
 2025-06-29 23:24:12 -07:00
Mick Grove
cefa69e426 Added test to prevent this and similar issues 2025-06-29 22:51:49 -07:00
Mick Grove
a3060ec144 Added test to prevent this and similar issues 2025-06-29 22:50:16 -07:00
Mick Grove
366f6fab5b Added test to prevent this and similar issues 2025-06-29 22:01:25 -07:00
Mick Grove
4ee98a6cb0 fixed sourcegraph rule 2025-06-29 21:45:43 -07:00
Mick Grove
1e40cf458c
 		Merge pull request #15 from mongodb/development v1.17.0 
v1.17.0
 2025-06-28 09:58:20 -07:00
Mick Grove
16bc75020b updated test 2025-06-28 09:30:22 -07:00
Mick Grove
331c048239 updated test 2025-06-28 09:22:13 -07:00
Mick Grove
488635e9c6 updated test 2025-06-28 09:20:44 -07:00
Mick Grove
441595689c Introduced flag – skip files/dirs whose path resembles tests (, , , , ), reducing noise. 2025-06-28 09:18:28 -07:00
Mick Grove
28af26b23a Introduced flag – skip files/dirs whose path resembles tests (, , , , ), reducing noise. 2025-06-28 09:16:42 -07:00
Mick Grove
1bf87935c8 added rules for nasa, teamcity 2025-06-28 09:05:19 -07:00
Mick Grove
0a5cabbb51 Added rules for shopify, truenas 2025-06-28 08:44:36 -07:00
Mick Grove
26b5b7918f Added ruels for sonarcloud, sonarqube, sourcegraph 2025-06-28 08:34:15 -07:00
Mick Grove
edc88c4714 Updated README 2025-06-28 07:08:22 -07:00
Mick Grove
b172a2ff89
 		Merge pull request #14 from mongodb/development v1.16.0 
This PR (v1.16.0) improves HTML detection, removes the cargo-nextest installation during test running, and adds new secret scanning rules for various services (including 1Password and DroneCI).

Updated the HTML detection logic in the HTTP validation code
Added new secret rules for WireGuard, Twitter, Slack, 1Password, DroneCI, and others
Removed the cargo-nextest installation step from the Makefile
 2025-06-27 20:16:53 -07:00
Mick Grove
389fcf7853 Fixed twitter rule examples 2025-06-27 18:48:31 -07:00
Mick Grove
87d2a83e3e Fix: HTML detection now requires both HTML content-type and html tag, fixing webhook false negatives 2025-06-27 15:28:34 -07:00
Mick Grove
7202bb9373 Added rules for twitter, wireguard, onepassword, droneci 2025-06-26 21:24:07 -07:00
Mick Grove
fc602a68dd
 		Merge pull request #13 from mongodb/development v1.15.0 
Preparing the v1.15.0 release by cleaning up temp files, enhancing update-check output styling, fixing a self-update binary lookup bug, and normalizing regex flags across secret-detection rules.

Add explicit temp-file cleanup (temp_dir.close()) before process exit.
Refactor src/update.rs to apply styled output and use semver comparisons.
Bulk regex “rule cleanup”: unify inline flags to (?xi) and enforce uppercase ranges.
 2025-06-26 16:44:01 -07:00
Mick Grove
abeac9cde9 Fixed Snyk rule 2025-06-26 15:46:14 -07:00
Mick Grove
3add34be78 Added rules for readme, rubygems, salesforce, segment, snyk, pulumi, pubnub 2025-06-26 15:37:51 -07:00
Mick Grove
579828c520 Improved Updater text. Cleaned up more rules and the examples included with them. 2025-06-26 14:55:35 -07:00