eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
274 commits 5 branches 83 tags 53 MiB
Commit graph

93 commits

Author SHA1 Message Date
Mick Grove
81d2f47c67 - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 
- Added rules for sendbird, mattermost, langchain, notion
- JWT validation hardened to reject alg:none by default (only allowed if explicitly configured), require iss for OIDC/JWKS verification, ensuring Active Credential means cryptographically verified and time-valid, not just unexpired
- Updated the Git cloning logic to include all refs and minimize clone output, allowing Kingfisher to analyze pull request and deleted branch history
 2025-08-21 15:39:04 -07:00
Mick Grove
4602ea8754 fixed example in rule 2025-08-18 23:32:15 -07:00
Mick Grove
951b62d61e - Added rules for clearbit, kickbox, azure container registry, improved Azure Storage key 
- Grouped JSON and JSONL outputs by rule, restoring matches arrays in reports
 2025-08-18 22:56:34 -07:00
Mick Grove
262adf658b added more rules 2025-08-16 20:36:22 -07:00
Mick Grove
6d669b4bb7 added more rules 2025-08-16 20:23:27 -07:00
Mick Grove
a2965bcf47 added more rules 2025-08-16 14:54:01 -07:00
Mick Grove
1d2522882a added clickhouse rule and validation 2025-08-16 08:41:39 -07:00
Mick Grove
7b08f5d447 removed serde_utils and added Authress rule 2025-08-16 07:35:52 -07:00
Mick Grove
6fb119d501 removed serde_utils and added Authress rule 2025-08-16 07:33:36 -07:00
Mick Grove
a3a7efb96e fixed aiven regex to pass test 2025-08-14 10:17:16 -07:00
Mick Grove
e83b171694 added rule for Vercel 2025-08-13 15:35:04 -07:00
Mick Grove
deef538835 fixed test 2025-08-13 09:20:36 -07:00
Mick Grove
f90c0a6eff Improved Tailscale api key detectors 2025-08-13 09:13:50 -07:00
Mick Grove
8c71eae231 Dropped the “prevalidated” flag from rule definitions and validation logic so every finding now flows through the standard active/inactive/unknown pipeline, simplifying rule configuration and preventing special‑case bypasses 2025-08-13 08:22:53 -07:00
Mick Grove
9275fb5541 - --quiet now suppresses scan summaries and rule statistics unless --rule-stats is explicitly provided 
- Added X Consumer key detection and validation
 2025-08-09 15:52:00 -07:00
Mick Grove
f1c3bcb56a Added X Consumer key detection and validation 2025-08-09 08:45:27 -07:00
Mick Grove
ac5b9fb594 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:21:16 -07:00
Mick Grove
63125b3a7f Fixed GitHub organization and GitLab group scans when using '--git-history=none' 2025-08-07 16:13:57 -07:00
Mick Grove
fb2b91595b Fixed validation logic for clarifai rule 2025-08-06 21:31:02 -07:00
Mick Grove
a502375f78 fixing github action failure for linux-arm6 when making deb 2025-08-05 18:06:09 -07:00
Mick Grove
646e6175d2 Updated Supabase rule to detect project url's and validate their corresponding tokens 2025-08-05 16:25:22 -07:00
Mick Grove
5931847300 - Use system TLS root certificates to support self-hosted GitLab instances with internal CAs 
- Added new rule: Coze personal access token
 2025-08-05 14:45:51 -07:00
Mick Grove
28fd24c9b4 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:19 -07:00
Mick Grove
bc05c3e5f2 refactored output reporting and formatting logic 2025-08-04 08:58:06 -07:00
Mick Grove
bbe1c38c93 updating s3 feature 2025-08-03 20:59:58 -07:00
Mick Grove
11b7fac03b New rule: Groq 2025-08-01 17:07:13 -07:00
Mick Grove
46d0ecce3b - New rules: Telegram bot token, OpenWeatherMap, Apify 
- New OpenAI detectors added (@joshlarsen)
- Fixed bug that broke validation when using unnamed group captures
 2025-08-01 16:56:04 -07:00
Mick Grove
e1533118c0 Update data/rules/openai.yml 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-01 15:31:29 -07:00
Josh Larsen
87871055b9 add newer OpenAI API key formats 2025-08-01 15:04:37 -04:00
Mick Grove
902446d754 bug fixes in response to code review. Also added support for ed25519 coinbase cdp api keys 2025-07-31 18:29:21 -07:00
Mick Grove
e73aec9d70 - Fixed issue when more than 1 named capture group is used in a rule variable 
- Added 2 new liquid template filters: 'b64dec' and 'es256_sign'
- Added custom validator for Coinbase, and a Coinbase rule that uses it
 2025-07-31 16:52:50 -07:00
Mick Grove
627ef98881 WIP: Adding support for scanning Docker images 2025-07-27 12:20:20 -07:00
Mick Grove
0dc236372b added buildkite rule 2025-07-26 22:01:49 -07:00
Mick Grove
1e9acb39c1 added buildkite rule 2025-07-26 22:00:35 -07:00
Mick Grove
e6693b480e added buildkite rule 2025-07-26 22:00:05 -07:00
Mick Grove
63a757fba8 Added support for scanning issues returned from a JQL search using --jira-url and --jql 2025-07-25 17:23:18 -07:00
Mick Grove
1ac413bbee Added ElevenLabs rule 2025-07-25 10:31:17 -07:00
Mick Grove
9b4856d7d5 Fixed Gitlab support. Added pre-commit and pre-receive installation scripts. 2025-07-23 19:57:33 -07:00
Mick Grove
60a4d1a8dd Fixed bug in Makefile hen setting PROJECT_NAME 2025-07-21 22:52:05 -07:00
Mick Grove
7a77ef3dbf Fixed bug in Makefile hen setting PROJECT_NAME 2025-07-21 22:43:29 -07:00
Mick Grove
1f1dbf312f - Now generating DEB and RPM packages 
- Now releasing Docker images, and updated README
- Added rule for Scale, Deepgram, AssemblyAI
 2025-07-21 15:21:10 -07:00
Mick Grove
8b2c79e70f Updating GitHub Action to generate Docker image. Added rules for Diffbot, ai21, baseten. Fixed supabase rule. Added 'alg' to JWT validation output 2025-07-18 15:26:18 -07:00
Mick Grove
6ac51c5238 fixed 1password rule id 2025-07-17 15:25:10 -07:00
Mick Grove
8f58e2fe3d fixed issues found by pr review 2025-07-17 15:19:03 -07:00
Mick Grove
6bcfd6bc48 upgraded cargo dependencies 2025-07-17 14:31:09 -07:00
Mick Grove
3b95aae12a Added rule for Runway 2025-07-17 13:52:26 -07:00
Mick Grove
8dee433ef6 Added rule for Replicate 2025-07-17 13:28:59 -07:00
Mick Grove
9dc46103ed Added rules for Cohere and Stability.ai 2025-07-17 13:18:54 -07:00
Mick Grove
96943c72da Added rules for Cohere and Stability.ai 2025-07-17 11:30:36 -07:00
Mick Grove
bf24b0c563 Added rule for Google Gemini AI 2025-07-17 11:07:44 -07:00