eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
224 commits 5 branches 83 tags 53 MiB
Commit graph

79 commits

Author SHA1 Message Date
Mick Grove
96a08ed8ed GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 15:11:44 -07:00
Mick Grove
97956bcc3f GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 15:11:36 -07:00
Mick Grove
5f1c4fb236 changes in response to code review 2025-08-07 18:45:46 -07:00
Mick Grove
dafc123eb9 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 18:30:40 -07:00
Mick Grove
d4e8900d37 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:36:39 -07:00
Mick Grove
ac5b9fb594 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:21:16 -07:00
Mick Grove
63125b3a7f Fixed GitHub organization and GitLab group scans when using '--git-history=none' 2025-08-07 16:13:57 -07:00
Mick Grove
6fe4d0e789 fixed issue where --redact did not function properly 2025-08-06 21:23:27 -07:00
Mick Grove
6cbde61099 Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:16:22 -07:00
Mick Grove
a81cfb963a Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:15:50 -07:00
Mick Grove
ff5250c9a2 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:42 -07:00
Mick Grove
28fd24c9b4 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:19 -07:00
Mick Grove
be35bb532f added progress bar to s3 downloads, and attempting to fix linux-arm64 test failure due to code 143 2025-08-04 12:32:19 -07:00
Mick Grove
55f2c27ed5 fixed issues found by pr review 2025-08-04 09:21:49 -07:00
Mick Grove
1f7653c288 Update src/reporter.rs 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Mick Grove <mick.grove@mongodb.com>
 2025-08-04 09:09:51 -07:00
Mick Grove
bc05c3e5f2 refactored output reporting and formatting logic 2025-08-04 08:58:06 -07:00
Mick Grove
1e466feee8 Update src/scanner/runner.rs 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-03 10:35:52 -07:00
Mick Grove
505d775302 improved integration test and updated README 2025-08-03 09:45:52 -07:00
Mick Grove
57cb4f320c improving s3 bucket scanning feature 2025-08-03 08:13:08 -07:00
Mick Grove
40e760ea2c -Added support for scanning AWS S3 buckets via --s3-bucket and optional --s3-prefix 
- Added --role-arn and --aws-local-profile flags for S3 authentication alongside KF_AWS_KEY/KF_AWS_SECRET
 2025-08-02 20:40:16 -07:00
Mick Grove
46d0ecce3b - New rules: Telegram bot token, OpenWeatherMap, Apify 
- New OpenAI detectors added (@joshlarsen)
- Fixed bug that broke validation when using unnamed group captures
 2025-08-01 16:56:04 -07:00
Mick Grove
3ecce947ab Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases. Removed pre-commit installation hook, due to bugs 2025-08-01 09:18:29 -07:00
Mick Grove
f48eeb79e2 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases 2025-08-01 09:15:24 -07:00
Mick Grove
902446d754 bug fixes in response to code review. Also added support for ed25519 coinbase cdp api keys 2025-07-31 18:29:21 -07:00
Mick Grove
e73aec9d70 - Fixed issue when more than 1 named capture group is used in a rule variable 
- Added 2 new liquid template filters: 'b64dec' and 'es256_sign'
- Added custom validator for Coinbase, and a Coinbase rule that uses it
 2025-07-31 16:52:50 -07:00
Mick Grove
aaabcbd499 Added support for Slack. Wrote a basic integration test 2025-07-29 20:55:44 -07:00
Mick Grove
bcf2b60e0b Added support for Slack 2025-07-29 19:00:49 -07:00
Mick Grove
fc1ac8500a Removed println statements used for debugging 2025-07-29 10:25:58 -07:00
Mick Grove
d3fbffcb84 Fixed broken windows build script 2025-07-29 10:12:40 -07:00
Mick Grove
dcbdb51746 improved precommit hook, to allow global installation 2025-07-28 10:26:32 -07:00
Mick Grove
787a5aaf22 improved precommit hook, to allow global installation 2025-07-28 10:25:11 -07:00
Mick Grove
cdbf3ffac1 changed from oci-distribution to newer oci-client 2025-07-28 09:55:48 -07:00
Mick Grove
34b533a59d Adding support for scanning Docker images 2025-07-27 20:25:45 -07:00
Mick Grove
112c8c3057 Adding support for scanning Docker images 2025-07-27 19:03:43 -07:00
Mick Grove
7cf37969dd Adding support for scanning Docker images 2025-07-27 17:54:26 -07:00
Mick Grove
8739c92572 WIP: Adding support for scanning Docker images 2025-07-27 14:59:19 -07:00
Mick Grove
17586c5b57 WIP: Adding support for scanning Docker images 2025-07-27 13:17:49 -07:00
Mick Grove
627ef98881 WIP: Adding support for scanning Docker images 2025-07-27 12:20:20 -07:00
Mick Grove
86b3ba4947 removed openssl dependency from jira-query 2025-07-25 21:50:28 -07:00
Mick Grove
981ccf80a2 Update src/reporter/sarif_format.rs 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-07-25 21:04:47 -07:00
Mick Grove
63a757fba8 Added support for scanning issues returned from a JQL search using --jira-url and --jql 2025-07-25 17:23:18 -07:00
Mick Grove
9b4856d7d5 Fixed Gitlab support. Added pre-commit and pre-receive installation scripts. 2025-07-23 19:57:33 -07:00
Mick Grove
955118e483 Added precommit and prereceive hook installations. Fixing Gitlab support 2025-07-23 18:14:43 -07:00
Mick Grove
8b2c79e70f Updating GitHub Action to generate Docker image. Added rules for Diffbot, ai21, baseten. Fixed supabase rule. Added 'alg' to JWT validation output 2025-07-18 15:26:18 -07:00
Mick Grove
7d28ab531d updated README 2025-07-17 15:11:35 -07:00
Mick Grove
6bcfd6bc48 upgraded cargo dependencies 2025-07-17 14:31:09 -07:00
Mick Grove
5f8ffcd940 updated github actions to upgrade build from 1.85.0 to 1.88.0 2025-07-14 19:44:28 -07:00
Mick Grove
0830606260 change that hoists the redirect-free reqwest::Client into a single, lazily-initialized static so every call to validate_jwt re-uses the same handle (and therefore the same connection-pool, DNS cache, TLS session cache, etc) 2025-07-14 17:22:51 -07:00
Mick Grove
8fb78c8c65 change that hoists the redirect-free reqwest::Client into a single, lazily-initialized static so every call to validate_jwt re-uses the same handle (and therefore the same connection-pool, DNS cache, TLS session cache, etc) 2025-07-14 17:22:37 -07:00
Mick Grove
959a6b3043 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 17:10:53 -07:00