eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
282 commits 5 branches 83 tags 53 MiB
Commit graph

282 commits

This branch
This branch
All branches
Author SHA1 Message Date
Mick Grove
bbbb0f33bb added ollama rule 2025-08-26 10:22:18 -07:00
Mick Grove
7f3846c8e7 Added a new install-precommit subcommand that installs a git pre-commit hook, prompting or accepting --global/--repo flags to control scope and configuring the hook to run kingfisher --quiet --only-valid --no-update-check 2025-08-22 17:33:03 -07:00
Mick Grove
2f1385f5f1 Added a new install-precommit subcommand that installs a git pre-commit hook, prompting or accepting --global/--repo flags to control scope and configuring the hook to run kingfisher --quiet --only-valid --no-update-check 2025-08-22 17:26:48 -07:00
Mick Grove
96293385f5 - Improved rules: AWS, pem 2025-08-22 16:16:00 -07:00
Mick Grove
6f06b1acb3 mproved AWS rule 2025-08-22 13:26:54 -07:00
Mick Grove
f51abc00b0 fixed failing tests 2025-08-21 16:13:03 -07:00
Mick Grove
29e09906b7 fixed failing tests 2025-08-21 16:11:34 -07:00
Mick Grove
910196d11d fixed failing tests 2025-08-21 16:10:52 -07:00
Mick Grove
245fb20670 - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 
- Added rules for sendbird, mattermost, langchain, notion
- JWT validation hardened to reject alg:none by default (only allowed if explicitly configured), require iss for OIDC/JWKS verification, ensuring Active Credential means cryptographically verified and time-valid, not just unexpired
- Updated the Git cloning logic to include all refs and minimize clone output, allowing Kingfisher to analyze pull request and deleted branch history
 2025-08-21 15:39:04 -07:00
Mick Grove
87094ad773 - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 2025-08-20 20:41:19 -07:00
Mick Grove
a3d9d22d6c - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 2025-08-20 20:41:11 -07:00
Mick Grove
90405c77dd Added '--skip-regex' and '--skip-word' flags to ignore secrets matching custom patterns or skipwords 2025-08-19 19:19:13 -07:00
Mick Grove
bf08d973b4 Added '--skip-regex' and '--skip-word' flags to ignore secrets matching custom patterns or skipwords 2025-08-19 19:18:25 -07:00
Mick Grove
36f51afd63 - Fixed issue with self-update on Linux 
- Reverted the change to json and jsonl outputs by rule
 2025-08-19 11:55:28 -07:00
Mick Grove
d2f40c477f Fixed issue with self-update on Linux 2025-08-19 09:30:26 -07:00
Mick Grove
c3257a7e6f fixed example in rule 2025-08-18 23:32:15 -07:00
Mick Grove
41a4ebb60f - Added rules for clearbit, kickbox, azure container registry, improved Azure Storage key 
- Grouped JSON and JSONL outputs by rule, restoring matches arrays in reports
 2025-08-18 22:56:34 -07:00
Mick Grove
92bbe70487 fixing windows tests 2025-08-17 21:11:09 -07:00
Mick Grove
d3b85ed370 fixing issues reported by code review 2025-08-17 18:02:36 -07:00
Mick Grove
c81e8a763d fixed failing tests 2025-08-17 17:41:51 -07:00
Mick Grove
068448193f fixed failing tests 2025-08-17 17:41:34 -07:00
Mick Grove
23c727f57d added more rules 2025-08-16 20:36:22 -07:00
Mick Grove
768d9c7899 added more rules 2025-08-16 20:23:27 -07:00
Mick Grove
0d89e682da added more rules 2025-08-16 14:54:01 -07:00
Mick Grove
a5c9c442d9 added clickhouse rule and validation 2025-08-16 08:41:39 -07:00
Mick Grove
f645212c57 removed serde_utils and added Authress rule 2025-08-16 07:35:52 -07:00
Mick Grove
e3566b26e8 removed serde_utils and added Authress rule 2025-08-16 07:34:02 -07:00
Mick Grove
6619705459 removed serde_utils and added Authress rule 2025-08-16 07:33:36 -07:00
Mick Grove
0ce72739dc Improved language detection 2025-08-15 16:08:46 -07:00
Mick Grove
7a0ea600d3 refactored rule loading 2025-08-15 13:13:54 -07:00
Mick Grove
1a6f03df26 refactored rule loading 2025-08-15 13:13:33 -07:00
Mick Grove
6d0027c14f code cleanup' 2025-08-15 09:07:25 -07:00
Mick Grove
b259771ca9 fixed aiven regex to pass test 2025-08-14 10:17:16 -07:00
Mick Grove
2a29a76eda - Added support for scanning gitlab subgroups, with 'kingfisher scan --gitlab-group my-group --gitlab-include-subgroups' 2025-08-14 09:26:44 -07:00
Mick Grove
b8ffa3ba0c - Added support for scanning gitlab subgroups, with 'kingfisher scan --gitlab-group my-group --gitlab-include-subgroups' 2025-08-14 09:25:18 -07:00
Mick Grove
d74c86818a added rule for Vercel 2025-08-13 15:35:04 -07:00
Mick Grove
1054476a3b fixed test 2025-08-13 09:23:03 -07:00
Mick Grove
a062e82728 fixed test 2025-08-13 09:20:36 -07:00
Mick Grove
12e9a01b5e Improved Tailscale api key detectors 2025-08-13 09:13:50 -07:00
Mick Grove
e7a8da6b3c Dropped the “prevalidated” flag from rule definitions and validation logic so every finding now flows through the standard active/inactive/unknown pipeline, simplifying rule configuration and preventing special‑case bypasses 2025-08-13 08:22:53 -07:00
Mick Grove
25268eabef Added support for scanning Confluence pages 2025-08-11 09:03:58 -07:00
Mick Grove
bf4fc622fa Added support for scanning Confluence pages 2025-08-11 08:26:49 -07:00
Mick Grove
2a40b9efee Added support for scanning Confluence pages 2025-08-11 08:25:24 -07:00
Mick Grove
979d5e0f3d Added support for scanning Confluence pages 2025-08-11 08:04:52 -07:00
Mick Grove
0502eeb7a1 Added support for scanning Confluence pages 2025-08-10 21:57:35 -07:00
Mick Grove
5e678155ba Added support for scanning Confluence pages 2025-08-10 21:55:45 -07:00
Mick Grove
94e2e11de3 Added support for scanning Confluence pages 2025-08-10 21:54:26 -07:00
Mick Grove
baa7b6e761 Added support for scanning Confluence pages 2025-08-10 21:51:31 -07:00
Mick Grove
9ca6ea5fb6 removed unused cli argument, snippet-length 2025-08-10 17:27:36 -07:00
Mick Grove
690db297e3 removed unused cli argument, snippet-length 2025-08-10 17:25:32 -07:00