eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
1,280 commits 5 branches 83 tags 53 MiB
Commit graph

161 commits

Author SHA1 Message Date
Mick Grove
a593e6d51e Increase max-file-size default to 256 mb (up from 64 mb) 2025-09-09 22:40:00 -07:00
Mick Grove
b70df66efd updated readme 2025-09-05 07:57:14 -07:00
Mick Grove
7579eb923c updated readme 2025-09-05 07:54:50 -07:00
Mick Grove
82e4d7b620 updated readme 2025-09-04 23:52:43 -07:00
Mick Grove
f24f00d6bd Decode Base64 blobs and scan their contents for secrets while skipping short strings for performance. This has a small performance impact and can be disabled with --no-base64 2025-08-30 20:02:53 -07:00
Mick Grove
b3f80d7a33 added top level 'self-update' cli sub command to update the binary independently. Now supports updating over homebrew managed binary 2025-08-27 15:35:01 -07:00
Mick Grove
c4cda65690 added rules for zhipu 2025-08-27 12:43:41 -07:00
Mick Grove
639fc60955 Added a new install-precommit subcommand that installs a git pre-commit hook, prompting or accepting --global/--repo flags to control scope and configuring the hook to run kingfisher --quiet --only-valid --no-update-check 2025-08-22 17:33:03 -07:00
Mick Grove
231b92e52e Added a new install-precommit subcommand that installs a git pre-commit hook, prompting or accepting --global/--repo flags to control scope and configuring the hook to run kingfisher --quiet --only-valid --no-update-check 2025-08-22 17:26:48 -07:00
Mick Grove
81d2f47c67 - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 
- Added rules for sendbird, mattermost, langchain, notion
- JWT validation hardened to reject alg:none by default (only allowed if explicitly configured), require iss for OIDC/JWKS verification, ensuring Active Credential means cryptographically verified and time-valid, not just unexpired
- Updated the Git cloning logic to include all refs and minimize clone output, allowing Kingfisher to analyze pull request and deleted branch history
 2025-08-21 15:39:04 -07:00
Mick Grove
6e4c94ddc3 - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 2025-08-20 20:41:11 -07:00
Mick Grove
d3bf941c5f Added '--skip-regex' and '--skip-word' flags to ignore secrets matching custom patterns or skipwords 2025-08-19 19:18:25 -07:00
Mick Grove
343c08ed00 Fixed issue with self-update on Linux 2025-08-19 09:30:26 -07:00
Mick Grove
125858c060 fixed failing tests 2025-08-17 17:41:34 -07:00
Mick Grove
6d669b4bb7 added more rules 2025-08-16 20:23:27 -07:00
Mick Grove
14fccc9cc6 - Added support for scanning gitlab subgroups, with 'kingfisher scan --gitlab-group my-group --gitlab-include-subgroups' 2025-08-14 09:25:18 -07:00
Mick Grove
0e7a0b57dd Added support for scanning Confluence pages 2025-08-10 21:57:35 -07:00
Mick Grove
4489b576f8 Added support for scanning Confluence pages 2025-08-10 21:55:45 -07:00
Mick Grove
22c5594b53 Added support for scanning Confluence pages 2025-08-10 21:51:31 -07:00
Mick Grove
a81cfb963a Remote scans with --git-history=none now clone repositories with a working tree and scan the current files instead of erroring with 'No inputs to scan.' 2025-08-06 19:15:50 -07:00
Mick Grove
28fd24c9b4 - Fixed header precedence so custom HTTP validation headers like "Accept" are preserved 
- Added new Heroku rule
 2025-08-04 19:32:19 -07:00
Mick Grove
bbe1c38c93 updating s3 feature 2025-08-03 20:59:58 -07:00
Mick Grove
505d775302 improved integration test and updated README 2025-08-03 09:45:52 -07:00
Mick Grove
40e760ea2c -Added support for scanning AWS S3 buckets via --s3-bucket and optional --s3-prefix 
- Added --role-arn and --aws-local-profile flags for S3 authentication alongside KF_AWS_KEY/KF_AWS_SECRET
 2025-08-02 20:40:16 -07:00
Mick Grove
c508befe63 Fixed validation caching for HTTP validators to include rendered headers so inactive secrets no longer appear active, in some cases. Removed pre-commit installation hook, due to bugs 2025-08-01 09:17:04 -07:00
Mick Grove
1db0131141 Added support for Slack. Wrote a basic integration test 2025-07-29 20:54:22 -07:00
Mick Grove
1b427d97ca Added support for Slack. Wrote a basic integration test 2025-07-29 20:20:33 -07:00
Mick Grove
0f6f7abf37 Added support for Slack 2025-07-29 19:51:02 -07:00
Mick Grove
bcf2b60e0b Added support for Slack 2025-07-29 19:00:49 -07:00
Mick Grove
d3fbffcb84 Fixed broken windows build script 2025-07-29 10:12:40 -07:00
Mick Grove
d42098f187 fixed documentation typo 2025-07-28 11:04:24 -07:00
Mick Grove
787a5aaf22 improved precommit hook, to allow global installation 2025-07-28 10:25:11 -07:00
Mick Grove
6a2648d606 improved authentication options for Docker support 2025-07-28 10:07:55 -07:00
Mick Grove
cdbf3ffac1 changed from oci-distribution to newer oci-client 2025-07-28 09:55:48 -07:00
Mick Grove
34b533a59d Adding support for scanning Docker images 2025-07-27 20:25:45 -07:00
Mick Grove
627ef98881 WIP: Adding support for scanning Docker images 2025-07-27 12:20:20 -07:00
Mick Grove
4143fc463f updated README 2025-07-26 21:01:35 -07:00
Mick Grove
63a757fba8 Added support for scanning issues returned from a JQL search using --jira-url and --jql 2025-07-25 17:23:18 -07:00
Mick Grove
955118e483 Added precommit and prereceive hook installations. Fixing Gitlab support 2025-07-23 18:14:43 -07:00
Mick Grove
9ed3cb46b0 Fixed permission issue with cargo-deb running after docker based linux build 2025-07-22 08:27:20 -07:00
Mick Grove
83bde3247e Fixed permission issue with cargo-deb running after docker based linux build 2025-07-22 08:25:42 -07:00
Mick Grove
f02f12b424 Fixed permission issue with cargo-deb running after docker based linux build 2025-07-22 08:24:45 -07:00
Mick Grove
1f1dbf312f - Now generating DEB and RPM packages 
- Now releasing Docker images, and updated README
- Added rule for Scale, Deepgram, AssemblyAI
 2025-07-21 15:21:10 -07:00
Mick Grove
8f58e2fe3d fixed issues found by pr review 2025-07-17 15:19:03 -07:00
Mick Grove
ccd9e7a794 updated README 2025-07-17 15:17:45 -07:00
Mick Grove
e51b3f0424 updated README 2025-07-17 15:11:41 -07:00
Mick Grove
7d28ab531d updated README 2025-07-17 15:11:35 -07:00
Mick Grove
507b8e2b5e Added dockerfile and github action to build and publish it 2025-07-15 16:42:22 -07:00
Mick Grove
5d5521af5f Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 17:09:04 -07:00
Mick Grove
533fc49c54 Removed --ignore-tests argument, because the --exclude flag provides more granular functionality 2025-07-14 16:55:19 -07:00