Mick Grove
6100eeb6b5
updated docs
2026-04-14 22:56:19 -07:00
Mick Grove
365422a819
fixed performance regression
2026-04-09 22:21:02 -07:00
Mick Grove
17c57e96e3
changes in response to PR review
2026-04-08 08:29:50 -07:00
Mick Grove
0cb854872b
Replaced tree-sitter with a lighter parser-based context verifier built from handwritten lexers plus tl/cssparser, preserving context-dependent matching while cutting about 19 MB from the release binary.
2026-04-07 23:20:17 -07:00
Mick Grove
45a565fa6e
added more rules
2026-04-06 22:18:58 -07:00
Mick Grove
f227141b88
fixes in response to code review
2026-04-05 10:58:46 -07:00
Mick Grove
a7b8711c5c
updated readme
2026-04-04 08:16:15 -07:00
Mick Grove
915dbca646
updated readme
2026-04-04 08:06:46 -07:00
Mick Grove
13bad3f172
added more access-maps
2026-04-01 13:39:24 -07:00
Mick Grove
19fe52a9bf
added more access-maps
2026-04-01 10:20:52 -07:00
Mick Grove
ba30b1788f
fixed github actions
2026-03-29 18:24:18 -07:00
Mick Grove
b14522351b
updated in response to ossf scorecard
2026-03-27 23:18:56 -07:00
Mick Grove
e0a403607f
updated in response to ossf scorecard
2026-03-27 22:26:35 -07:00
Mick Grove
b04865e174
updated in response to ossf scorecard
2026-03-27 21:38:58 -07:00
Mick Grove
4e9a7364cd
updated in response to ossf scorecard
2026-03-27 21:25:56 -07:00
Mick Grove
411aeefa92
updated in response to ossf scorecard
2026-03-27 17:22:21 -07:00
Mick Grove
1c7341f3ac
updated in response to ossf scorecard
2026-03-27 15:04:14 -07:00
Mick Grove
f0a3bee587
added --max-validation-response-length <BYTES>
2026-03-16 22:25:32 -07:00
Mick Grove
349b8165aa
Added TOON output support, to optimize usage of kingfisher from LLM/agent workflows
2026-03-15 15:00:59 -07:00
Mick Grove
bc1093ca4a
v1.90.0
2026-03-15 13:59:07 -07:00
Mick Grove
e54b87a322
added Teams support
2026-03-13 22:53:05 -07:00
Mick Grove
60931c11a9
added Teams support
2026-03-13 17:39:34 -07:00
Mick Grove
db67105221
v1.88.0
2026-03-11 21:36:30 -07:00
Mick Grove
b99cbf9f50
v1.88.0
2026-03-11 20:59:44 -07:00
Mick Grove
d5539c4e9d
v1.87.0
2026-03-09 21:50:58 -07:00
Mick Grove
ab811c8bcf
v1.87.0
2026-03-09 20:11:58 -07:00
Mick Grove
96ab9a6d58
fixing windows installers to support new arm64 build
2026-03-06 11:53:24 -08:00
Mick Grove
11c2b74d67
updated README
2026-03-05 13:23:19 -08:00
Mick Grove
444ab7d7b0
updated README
2026-03-05 13:23:07 -08:00
Mick Grove
3220ed3a80
Merge branch 'codex/pr-244-mergeable' into development
...
* codex/pr-244-mergeable:
Add Jira comment and changelog scanning
2026-02-28 11:14:19 -07:00
Mick Grove
719b91301d
Add Jira comment and changelog scanning
2026-02-28 11:13:00 -07:00
Mick Grove
0ae4e8445c
Updated kingfisher scan to accept Git repository URLs as positional targets (for example kingfisher scan github.com/org/repo or kingfisher scan https://gitlab.com/group/project.git ) without requiring --git-url.
2026-02-26 23:14:18 -07:00
Mick Grove
02538a6ac4
added more access-maps
2026-02-19 20:51:12 -08:00
Mick Grove
05002fe4d6
added more access-maps
2026-02-19 20:39:07 -08:00
Mick Grove
a9c5d8524f
added more access-maps
2026-02-19 18:19:20 -08:00
Mick Grove
3b1085baa6
added buildkit and harness to access-map
2026-02-17 22:58:29 -08:00
Mick Grove
39a4e217e3
Kingfisher can now generate an auditor-friendly HTML report
2026-02-15 14:29:42 -08:00
Mick Grove
470120369b
refactored code
2026-02-14 14:08:48 -08:00
Mick Grove
fdf85f09fc
html report viewer improvements
2026-02-13 18:35:36 -08:00
Mick Grove
79102a073b
html report viewer improvements
2026-02-13 18:19:18 -08:00
Mick Grove
816d5c40ba
wip 1.83
2026-02-13 16:41:28 -08:00
Mick Grove
5882468177
Added optional validation rate limiting via --validation-rps (global) and repeatable --validation-rps-rule <RULE_SELECTOR=RPS> (per-rule override) for both scan and validate. Throttling now applies across built-in validator types (HTTP/gRPC plus AWS, GCP, Coinbase, MongoDB, Postgres, MySQL, JDBC, JWT, and Azure Storage). Rule selectors support the short form (for example, github=2 matches kingfisher.github.*) with longest-prefix precedence when multiple selectors apply.
2026-02-12 12:33:59 -08:00
Mick Grove
4ab5932d57
- Added Vercel credential rules for new token formats introduced February 2026: vcp_ (personal access), vci_ (integration), vca_ (app access), vcr_ (app refresh), vck_ (AI Gateway API key). All use CRC32/Base62 checksum validation. Legacy 24-char format retained as kingfisher.vercel.1.
...
- Added revocation support for Vercel app tokens (vca_, vcr_) via https://api.vercel.com/login/oauth/token/revoke . Requires VERCEL_APP_CLIENT_ID (or NEXT_PUBLIC_VERCEL_APP_CLIENT_ID) and VERCEL_APP_CLIENT_SECRET.
- Fixed validate/revoke command generation to omit regex named captures (e.g., BODY, CHECKSUM) when they are not used by validation/revocation templates, so rules like Vercel no longer produce unnecessary --var BODY=... arguments.
2026-02-11 13:56:17 -08:00
Mick Grove
e518fb30f2
v1.81.0
2026-02-10 19:24:19 -08:00
Mick Grove
209f7611ef
v1.80.0
2026-02-09 12:14:50 -08:00
Mick Grove
ede6e62019
Fixed PyPi github action
2026-02-07 09:12:50 -08:00
Mick Grove
3f0fa7afde
added multi-step revocation support. Added revocation support for SendGrid, Netlify, Tailscale, ElevenLabs, Sourcegraph, MongoDB Atlas, Twilio, and NPM using multi-step (lookup ID then delete) pattern.
2026-02-05 17:16:49 -08:00
Mick Grove
ce9825429e
added multi-step revocation support. Added revocation support for SendGrid, Netlify, Tailscale, ElevenLabs, Sourcegraph, MongoDB Atlas, Twilio, and NPM using multi-step (lookup ID then delete) pattern.
2026-02-04 22:58:46 -08:00
Mick Grove
2391c01c36
added multi-step revocation support. Added revocation support for SendGrid, Netlify, Tailscale, ElevenLabs, Sourcegraph, MongoDB Atlas, Twilio, and NPM using multi-step (lookup ID then delete) pattern.
2026-02-04 22:57:56 -08:00
Mick Grove
363b2ce77d
added multi-step revocation support. Added revocation support for SendGrid, Netlify, Tailscale, ElevenLabs, Sourcegraph, MongoDB Atlas, Twilio, and NPM using multi-step (lookup ID then delete) pattern.
2026-02-04 22:26:57 -08:00
