eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
293 commits 5 branches 83 tags 53 MiB
Commit graph

56 commits

Author SHA1 Message Date
Mick Grove
332f2c59f9 added top level 'self-update' cli sub command to update the binary independently. Now supports updating over homebrew managed binary 2025-08-27 15:35:01 -07:00
Mick Grove
c2de3bc25c added rules for zhipu 2025-08-27 12:43:41 -07:00
Mick Grove
7f3846c8e7 Added a new install-precommit subcommand that installs a git pre-commit hook, prompting or accepting --global/--repo flags to control scope and configuring the hook to run kingfisher --quiet --only-valid --no-update-check 2025-08-22 17:33:03 -07:00
Mick Grove
2f1385f5f1 Added a new install-precommit subcommand that installs a git pre-commit hook, prompting or accepting --global/--repo flags to control scope and configuring the hook to run kingfisher --quiet --only-valid --no-update-check 2025-08-22 17:26:48 -07:00
Mick Grove
245fb20670 - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 
- Added rules for sendbird, mattermost, langchain, notion
- JWT validation hardened to reject alg:none by default (only allowed if explicitly configured), require iss for OIDC/JWKS verification, ensuring Active Credential means cryptographically verified and time-valid, not just unexpired
- Updated the Git cloning logic to include all refs and minimize clone output, allowing Kingfisher to analyze pull request and deleted branch history
 2025-08-21 15:39:04 -07:00
Mick Grove
a3d9d22d6c - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 2025-08-20 20:41:11 -07:00
Mick Grove
bf08d973b4 Added '--skip-regex' and '--skip-word' flags to ignore secrets matching custom patterns or skipwords 2025-08-19 19:18:25 -07:00
Mick Grove
d2f40c477f Fixed issue with self-update on Linux 2025-08-19 09:30:26 -07:00
Mick Grove
068448193f fixed failing tests 2025-08-17 17:41:34 -07:00
Mick Grove
768d9c7899 added more rules 2025-08-16 20:23:27 -07:00
Mick Grove
b8ffa3ba0c - Added support for scanning gitlab subgroups, with 'kingfisher scan --gitlab-group my-group --gitlab-include-subgroups' 2025-08-14 09:25:18 -07:00
Mick Grove
0502eeb7a1 Added support for scanning Confluence pages 2025-08-10 21:57:35 -07:00
Mick Grove
5e678155ba Added support for scanning Confluence pages 2025-08-10 21:55:45 -07:00
Mick Grove
baa7b6e761 Added support for scanning Confluence pages 2025-08-10 21:51:31 -07:00
Mick Grove
0b8e8fcc75 Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:15:50 -07:00
Mick Grove
664cfd0e5c - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:19 -07:00
Mick Grove
ef51e77e24 updating s3 feature 2025-08-03 20:59:58 -07:00
Mick Grove
10d604418b improved integration test and updated README 2025-08-03 09:45:52 -07:00
Mick Grove
96ab0d4b59 -Added support for scanning AWS S3 buckets via --s3-bucket and optional --s3-prefix 
- Added --role-arn and --aws-local-profile flags for S3 authentication alongside KF_AWS_KEY/KF_AWS_SECRET
 2025-08-02 20:40:16 -07:00
Mick Grove
3d1b299cf5 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases. Removed pre-commit installation hook, due to bugs 2025-08-01 09:17:04 -07:00
Mick Grove
340f5b99c4 Added support for Slack. Wrote a basic integration test 2025-07-29 20:54:22 -07:00
Mick Grove
86ea3540e3 Added support for Slack. Wrote a basic integration test 2025-07-29 20:20:33 -07:00
Mick Grove
77cf7ba1ed Added support for Slack 2025-07-29 19:51:02 -07:00
Mick Grove
3320863962 Added support for Slack 2025-07-29 19:00:49 -07:00
Mick Grove
d648756a03 Fixed broken windows build script 2025-07-29 10:12:40 -07:00
Mick Grove
22206cff30 fixed documentation typo 2025-07-28 11:04:24 -07:00
Mick Grove
4b032214f6 improved precommit hook, to allow global installation 2025-07-28 10:25:11 -07:00
Mick Grove
24fc33d5b9 improved authentication options for Docker support 2025-07-28 10:07:55 -07:00
Mick Grove
d9e3a61689 changed from oci-distribution to newer oci-client 2025-07-28 09:55:48 -07:00
Mick Grove
97dbda8f51 Adding support for scanning Docker images 2025-07-27 20:25:45 -07:00
Mick Grove
9a3fabdbf2 WIP: Adding support for scanning Docker images 2025-07-27 12:20:20 -07:00
Mick Grove
928dd193e0 updated README 2025-07-26 21:01:35 -07:00
Mick Grove
5c8f7d88ef Added support for scanning issues returned from a JQL search using --jira-url and --jql 2025-07-25 17:23:18 -07:00
Mick Grove
c9818e0da3 Added precommit and prereceive hook installations. Fixing Gitlab support 2025-07-23 18:14:43 -07:00
Mick Grove
3fbacaa5f4 Fixed permission issue with cargo-deb running after docker based linux build 2025-07-22 08:27:20 -07:00
Mick Grove
bc5ecd6b1c Fixed permission issue with cargo-deb running after docker based linux build 2025-07-22 08:25:42 -07:00
Mick Grove
62aeb07795 Fixed permission issue with cargo-deb running after docker based linux build 2025-07-22 08:24:45 -07:00
Mick Grove
c4e3e5d1d7 - Now generating DEB and RPM packages 
- Now releasing Docker images, and updated README
- Added rule for Scale, Deepgram, AssemblyAI
 2025-07-21 15:21:10 -07:00
Mick Grove
bea92dcfd4 fixed issues found by pr review 2025-07-17 15:19:03 -07:00
Mick Grove
73d7d6aced updated README 2025-07-17 15:17:45 -07:00
Mick Grove
d4d506f22c updated README 2025-07-17 15:11:41 -07:00
Mick Grove
b06baeb7bd updated README 2025-07-17 15:11:35 -07:00
Mick Grove
d261e9cb0e Added dockerfile and github action to build and publish it 2025-07-15 16:42:22 -07:00
Mick Grove
77c8940ba2 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 17:09:04 -07:00
Mick Grove
45e735ec89 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 16:55:19 -07:00
Mick Grove
3520c5fba5 Added baseline feature with --baseline-file and --manage-baseline flags. Introduced --exclude option for skipping paths 2025-07-14 13:18:24 -07:00
Mick Grove
b2a4263669 Added PR review suggestions 2025-07-09 16:00:54 -07:00
Mick Grove
cd4f626502 Added support for HTTP request bodies in rule validation. Added mistral and perplexity rule 2025-07-08 17:49:12 -07:00
Mick Grove
65de1b0290 added rules for deepseek, xai. Removed branding. Added a NOTICE file 2025-06-30 17:04:29 -07:00
Mick Grove
4ee98a6cb0 fixed sourcegraph rule 2025-06-29 21:45:43 -07:00