eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
1,280 commits 5 branches 83 tags 53 MiB
Commit graph

209 commits

Author SHA1 Message Date
Mick Grove
c419c164a8 GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 21:42:49 -07:00
Mick Grove
97956bcc3f GitLab: include nested subgroup projects when enumerating group repositories 2025-08-08 15:11:36 -07:00
Mick Grove
ac5b9fb594 JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials 2025-08-07 17:21:16 -07:00
Mick Grove
63125b3a7f Fixed GitHub organization and GitLab group scans when using '--git-history=none' 2025-08-07 16:13:57 -07:00
Mick Grove
fb2b91595b Fixed validation logic for clarifai rule 2025-08-06 21:31:02 -07:00
Mick Grove
6fe4d0e789 fixed issue where --redact did not function properly 2025-08-06 21:23:27 -07:00
Mick Grove
a81cfb963a Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:15:50 -07:00
Mick Grove
646e6175d2 Updated Supabase rule to detect project url's and validate their corresponding tokens 2025-08-05 16:25:22 -07:00
Mick Grove
5931847300 - Use system TLS root certificates to support self-hosted GitLab instances with internal CAs 
- Added new rule: Coze personal access token
 2025-08-05 14:45:51 -07:00
Mick Grove
28fd24c9b4 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:19 -07:00
Mick Grove
be35bb532f added progress bar to s3 downloads, and attempting to fix linux-arm64 test failure due to code 143 2025-08-04 12:32:19 -07:00
Mick Grove
bc05c3e5f2 refactored output reporting and formatting logic 2025-08-04 08:58:06 -07:00
Mick Grove
cb5595be23 Apply suggestions from code review 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-03 10:37:02 -07:00
Mick Grove
40e760ea2c -Added support for scanning AWS S3 buckets via --s3-bucket and optional --s3-prefix 
- Added --role-arn and --aws-local-profile flags for S3 authentication alongside KF_AWS_KEY/KF_AWS_SECRET
 2025-08-02 20:40:16 -07:00
Mick Grove
280fd92868 New rule: Groq 2025-08-01 17:28:55 -07:00
Mick Grove
11b7fac03b New rule: Groq 2025-08-01 17:07:13 -07:00
Mick Grove
46d0ecce3b - New rules: Telegram bot token, OpenWeatherMap, Apify 
- New OpenAI detectors added (@joshlarsen)
- Fixed bug that broke validation when using unnamed group captures
 2025-08-01 16:56:04 -07:00
Mick Grove
c508befe63 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases. Removed pre-commit installation hook, due to bugs 2025-08-01 09:17:04 -07:00
Mick Grove
f48eeb79e2 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases 2025-08-01 09:15:24 -07:00
Mick Grove
902446d754 bug fixes in response to code review. Also added support for ed25519 coinbase cdp api keys 2025-07-31 18:29:21 -07:00
Mick Grove
e73aec9d70 - Fixed issue when more than 1 named capture group is used in a rule variable 
- Added 2 new liquid template filters: 'b64dec' and 'es256_sign'
- Added custom validator for Coinbase, and a Coinbase rule that uses it
 2025-07-31 16:52:50 -07:00
Mick Grove
bcf2b60e0b Added support for Slack 2025-07-29 19:00:49 -07:00
Mick Grove
627ef98881 WIP: Adding support for scanning Docker images 2025-07-27 12:20:20 -07:00
Mick Grove
e6693b480e added buildkite rule 2025-07-26 22:00:05 -07:00
Mick Grove
63a757fba8 Added support for scanning issues returned from a JQL search using --jira-url and --jql 2025-07-25 17:23:18 -07:00
Mick Grove
1ac413bbee Added ElevenLabs rule 2025-07-25 10:31:17 -07:00
Mick Grove
9a87e30171 Fixed version number 2025-07-23 19:58:24 -07:00
Mick Grove
9b4856d7d5 Fixed Gitlab support. Added pre-commit and pre-receive installation scripts. 2025-07-23 19:57:33 -07:00
Mick Grove
1f1dbf312f - Now generating DEB and RPM packages 
- Now releasing Docker images, and updated README
- Added rule for Scale, Deepgram, AssemblyAI
 2025-07-21 15:21:10 -07:00
Mick Grove
127ad17622 Updating GitHub Action to create docker image 2025-07-18 16:55:38 -07:00
Mick Grove
8b2c79e70f Updating GitHub Action to generate Docker image. Added rules for Diffbot, ai21, baseten. Fixed supabase rule. Added 'alg' to JWT validation output 2025-07-18 15:26:18 -07:00
Mick Grove
7d28ab531d updated README 2025-07-17 15:11:35 -07:00
Mick Grove
6bcfd6bc48 upgraded cargo dependencies 2025-07-17 14:31:09 -07:00
Mick Grove
8dee433ef6 Added rule for Replicate 2025-07-17 13:28:59 -07:00
Mick Grove
96943c72da Added rules for Cohere and Stability.ai 2025-07-17 11:30:36 -07:00
Mick Grove
5d5521af5f Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 17:09:04 -07:00
Mick Grove
533fc49c54 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 16:55:19 -07:00
Mick Grove
601ca05fc8 JWT validation performs OpenID Connect discovery using the iss claim and verifies signatures via JWKS 2025-07-14 15:31:44 -07:00
Mick Grove
3520c5fba5 Added baseline feature with --baseline-file and --manage-baseline flags. Introduced --exclude option for skipping paths 2025-07-14 13:18:24 -07:00
Mick Grove
0ab21ace99 improved azure storage rule. Added rule to detect TravisCI encrypted values 2025-07-12 22:44:34 -07:00
Mick Grove
cadc2e44c5 Set GIT_TERMINAL_PROMPT=0 when cloning git repos 2025-07-09 15:34:36 -07:00
Mick Grove
dcb2191fe8 Added validation for Alibaba rule 2025-07-09 15:03:07 -07:00
Mick Grove
cd4f626502 Added support for HTTP request bodies in rule validation. Added mistral and perplexity rule 2025-07-08 17:49:12 -07:00
Mick Grove
b13bdacb2f Fixed Gitlab rule which was incorrectly identifying certain tokens as valid 2025-07-02 15:20:50 -07:00
Mick Grove
2280bee6e2 JSON output was missing committer name and email 2025-07-02 15:13:31 -07:00
Mick Grove
c6567ee04b Restored --version cli argument. Added a test for it 2025-07-01 10:31:09 -07:00
Mick Grove
65de1b0290 added rules for deepseek, xai. Removed branding. Added a NOTICE file 2025-06-30 17:04:29 -07:00
Mick Grove
366f6fab5b Added test to prevent this and similar issues 2025-06-29 22:01:25 -07:00
Mick Grove
331c048239 updated test 2025-06-28 09:22:13 -07:00
Mick Grove
28af26b23a Introduced flag – skip files/dirs whose path resembles tests (, , , , ), reducing noise. 2025-06-28 09:16:42 -07:00