eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
228 commits 5 branches 83 tags 53 MiB
Commit graph

228 commits

This branch
This branch
All branches
Author SHA1 Message Date
Mick Grove
3c487de38e GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 21:43:01 -07:00
Mick Grove
c419c164a8 GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 21:42:49 -07:00
Mick Grove
2c7b0f7705 GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 18:08:17 -07:00
Mick Grove
b0ce44f709 GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 15:12:33 -07:00
Mick Grove
96a08ed8ed GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 15:11:44 -07:00
Mick Grove
97956bcc3f GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 15:11:36 -07:00
Mick Grove
5f1c4fb236 changes in response to code review 2025-08-07 18:45:46 -07:00
Mick Grove
dafc123eb9 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 18:30:40 -07:00
Mick Grove
d4e8900d37 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:36:39 -07:00
Mick Grove
d8624972ec JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:21:31 -07:00
Mick Grove
ac5b9fb594 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:21:16 -07:00
Mick Grove
63125b3a7f Fixed GitHub organization and GitLab group scans when using '--git-history=none' 2025-08-07 16:13:57 -07:00
Mick Grove
fb2b91595b Fixed validation logic for clarifai rule 2025-08-06 21:31:02 -07:00
Mick Grove
6fe4d0e789 fixed issue where --redact did not function properly 2025-08-06 21:23:27 -07:00
Mick Grove
6cbde61099 Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:16:22 -07:00
Mick Grove
a81cfb963a Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:15:50 -07:00
Mick Grove
a502375f78 fixing github action failure for linux-arm6 when making deb 2025-08-05 18:06:09 -07:00
Mick Grove
646e6175d2 Updated Supabase rule to detect project url's and validate their corresponding tokens 2025-08-05 16:25:22 -07:00
Mick Grove
5931847300 - Use system TLS root certificates to support self-hosted GitLab instances with internal CAs 
- Added new rule: Coze personal access token
 2025-08-05 14:45:51 -07:00
Mick Grove
8ff147c08c - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 21:38:23 -07:00
Mick Grove
ff5250c9a2 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:42 -07:00
Mick Grove
28fd24c9b4 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:19 -07:00
Mick Grove
be35bb532f added progress bar to s3 downloads, and attempting to fix linux-arm64 test failure due to code 143 2025-08-04 12:32:19 -07:00
Mick Grove
55f2c27ed5 fixed issues found by pr review 2025-08-04 09:21:49 -07:00
Mick Grove
1f7653c288 Update src/reporter.rs 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Mick Grove <mick.grove@mongodb.com>
 2025-08-04 09:09:51 -07:00
Mick Grove
dcf31e8150 refactored output reporting and formatting logic 2025-08-04 08:58:20 -07:00
Mick Grove
bc05c3e5f2 refactored output reporting and formatting logic 2025-08-04 08:58:06 -07:00
Mick Grove
bbe1c38c93 updating s3 feature 2025-08-03 20:59:58 -07:00
Mick Grove
0a8e153842 Merge pull request #70 from micksmix/main 
Added support for scanning s3 buckets
 2025-08-03 10:37:33 -07:00
Mick Grove
cb5595be23 Apply suggestions from code review 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-03 10:37:02 -07:00
Mick Grove
1e466feee8 Update src/scanner/runner.rs 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-03 10:35:52 -07:00
Mick Grove
505d775302 improved integration test and updated README 2025-08-03 09:45:52 -07:00
Mick Grove
1b2f2b4452 added integration test 2025-08-03 08:56:22 -07:00
Mick Grove
047d580860 improving s3 bucket scanning feature 2025-08-03 08:14:32 -07:00
Mick Grove
57cb4f320c improving s3 bucket scanning feature 2025-08-03 08:13:08 -07:00
Mick Grove
40e760ea2c -Added support for scanning AWS S3 buckets via --s3-bucket and optional --s3-prefix 
- Added --role-arn and --aws-local-profile flags for S3 authentication alongside KF_AWS_KEY/KF_AWS_SECRET
 2025-08-02 20:40:16 -07:00
Mick Grove
97826fe280 Merge pull request #69 from mongodb/development 
v1.31.0
 2025-08-01 17:29:15 -07:00
Mick Grove
280fd92868 New rule: Groq 2025-08-01 17:28:55 -07:00
Mick Grove
11b7fac03b New rule: Groq 2025-08-01 17:07:13 -07:00
Mick Grove
46d0ecce3b - New rules: Telegram bot token, OpenWeatherMap, Apify 
- New OpenAI detectors added (@joshlarsen)
- Fixed bug that broke validation when using unnamed group captures
 2025-08-01 16:56:04 -07:00
Mick Grove
362d2c272e Merge pull request #68 from joshlarsen/add-openai-api-keys 
add support for newer OpenAI API key formats
 2025-08-01 16:21:28 -07:00
Mick Grove
e1533118c0 Update data/rules/openai.yml 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-01 15:31:29 -07:00
Josh Larsen
87871055b9 add newer OpenAI API key formats 2025-08-01 15:04:37 -04:00
Mick Grove
f6fafc6d09 Merge pull request #67 from mongodb/development 
v1.30.0
 2025-08-01 09:59:17 -07:00
Mick Grove
3ecce947ab Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases. Removed pre-commit installation hook, due to bugs 2025-08-01 09:18:29 -07:00
Mick Grove
c508befe63 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases. Removed pre-commit installation hook, due to bugs 2025-08-01 09:17:04 -07:00
Mick Grove
d35c44a94a Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases 2025-08-01 09:15:47 -07:00
Mick Grove
f48eeb79e2 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases 2025-08-01 09:15:24 -07:00
Mick Grove
b7c22e504c Merge pull request #65 from mongodb/development 
v1.29.0
 2025-07-31 19:00:39 -07:00
Mick Grove
902446d754 bug fixes in response to code review. Also added support for ed25519 coinbase cdp api keys 2025-07-31 18:29:21 -07:00