eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
1,092 commits 5 branches 83 tags 53 MiB
Commit graph

211 commits

Author SHA1 Message Date
Mick Grove
e1306ea55f
 		Merge pull request #207 from bored-engineer/patch-19 
fix(age): reduce allowed characters to bech32 alphabet
 2026-01-30 23:01:00 -08:00
Mick Grove
4d90cea6e3
 		Merge pull request #200 from bored-engineer/patch-11 
fix(discord): improve kingfisher.discord.1 regex
 2026-01-30 22:14:29 -08:00
Mick Grove
3730222e9f
 		Merge pull request #201 from bored-engineer/patch-14 
feat(dockerhub): add Organization Access Token regex (kingfisher.dockerhub.2), improve PAT regex (kingfisher.dockerhub.1)
 2026-01-30 22:07:44 -08:00
Mick Grove
d148f53ca1
 		Merge pull request #197 from bored-engineer/patch-6 
feat(asana): add v2 tokens, split v1/v0 patterns
 2026-01-30 22:06:14 -08:00
Mick Grove
180cb431b5
 		Merge pull request #198 from bored-engineer/patch-9 
fix(circleci): improve kingfisher.circleci.1 regex
 2026-01-30 22:04:52 -08:00
Mick Grove
d2d581c7fe
 		Merge pull request #199 from bored-engineer/patch-10 
fix(deepseek): improve kingfisher.deepseek.1 regex
 2026-01-30 22:03:55 -08:00
Mick Grove
7be3d86ea0
 		Merge pull request #205 from bored-engineer/patch-18 
fix(planetscale): improve kingfisher.planetscale.1 regex
 2026-01-30 22:03:33 -08:00
Mick Grove
00bde4abd2
 		Merge pull request #203 from bored-engineer/patch-17 
feat(mercury): add Mercury API token rules
 2026-01-30 22:03:23 -08:00
Mick Grove
ab4479506b
 		Merge pull request #194 from bored-engineer/patch-3 
fix(airtable): improve kingfisher.airtable.1 regex
 2026-01-30 22:02:54 -08:00
Mick Grove
376edbe5d1
 		Merge pull request #204 from bored-engineer/bored-engineer-patch-1 
feat(neon): add Neon API Key rule
 2026-01-30 22:02:00 -08:00
Luke Young
b81194bcd3
 		fix(age): reduce allowed characters to bech32 alphabet 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 20:57:55 -08:00
Luke Young
44f732595a
 		Add match_all_words matcher to Asana API rules 2026-01-30 18:43:26 -08:00
Luke Young
3fa9bfe160
 		Update CircleCI token examples in configuration 2026-01-30 18:40:22 -08:00
Luke Young
55e331f6a4
 		fix(planetscale): improve kingfisher.planetscale.1 regex 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 18:17:09 -08:00
Luke Young
678beef114
 		feat(neon): add Neon API Key rule 2026-01-30 18:05:59 -08:00
Luke Young
2d3279b4d3
 		feat(mercury): add Mercury API token rules 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 17:45:56 -08:00
Luke Young
5b2b81ed7e
 		feat(dockerhub): add Organization Access Token pattern 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 16:11:44 -08:00
Luke Young
87a92f94d9
 		fix(discord): improve kingfisher.discord.1 regex 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 15:15:31 -08:00
Luke Young
97210dcaa5
 		fix(deepseek): improve kingfisher.deepseek.1 regex 
Refactor regex pattern for DeepSeek API Key rule.

Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 15:08:24 -08:00
Luke Young
e73f2f5986
 		fix(circleci): improve regex 
Updated the regex pattern for CircleCI API token to allow a more flexible format.

Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 14:52:37 -08:00
Luke Young
ac02fb2783
 		feat(asana): add v2 tokens, split v1/v0 patterns 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 14:32:08 -08:00
Luke Young
77e3191532
 		fix(airtable): improve regex 
Signed-off-by: Luke Young <bored-engineer@users.noreply.github.com>
 2026-01-30 13:42:46 -08:00
Mick Grove
216fc1dbdc Switched compression dependencies to pure-Rust bzip2/lzma implementations and pared zip features to avoid C-based codecs for bz2/xz handling. 2026-01-23 09:52:11 -08:00
Mick Grove
049294af3d Skipped per-repository report writes when an output file is specified and emit a single aggregated report after multi-repository scans to preserve full output content in files. 2026-01-16 12:39:44 -08:00
Mick Grove
594534f69f Skipped per-repository report writes when an output file is specified and emit a single aggregated report after multi-repository scans to preserve full output content in files. 2026-01-16 11:34:13 -08:00
Mick Grove
fee6c2d5ba new rules 2026-01-16 09:30:30 -08:00
Mick Grove
bff15a334b new rules 2026-01-16 08:15:32 -08:00
Mick Grove
2eadddcc4e new rules 2026-01-15 22:46:07 -08:00
Mick Grove
b0e2ce8af1 new rules 2026-01-15 22:15:59 -08:00
Mick Grove
0409abead5 new rules 2026-01-15 22:02:31 -08:00
Mick Grove
f26d3ca383 new rules 2026-01-15 21:00:23 -08:00
Mick Grove
c57181aa60 improving findings viewer 2026-01-15 10:41:55 -08:00
Mick Grove
c2cb5b9637 fix beamer rule 2026-01-14 22:12:28 -08:00
Mick Grove
fdd0a8e02d fix beamer rule 2026-01-14 22:06:08 -08:00
Mick Grove
8c07fb3f3c - Enhanced Access Map View: added fingerprint display, enabled searching by fingerprint, and implemented bidirectional navigation between Findings and Access Map nodes. 
- Added Slack Access Map support with granular permissions in the tree view.
 2026-01-14 21:45:55 -08:00
Mick Grove
02131a6d40
 		Merge pull request #181 from mongodb/development 
preparing v1.74.0
 2026-01-13 21:15:07 -08:00
Mick Grove
f4fc395554 preparing v1.74.0 2026-01-13 17:08:21 -08:00
Mick Grove
a93419bd33 preparing v1.74.0 2026-01-13 14:26:50 -08:00
Mick Grove
e10f6c6e2a
 		Apply suggestions from code review 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Mick Grove <mick.grove@mongodb.com>
 2026-01-13 10:37:37 -08:00
Mick Grove
51588dbb6a preparing v1.74.0 2026-01-13 10:32:09 -08:00
Akshay Jain
69d447dcc9 Add detection for short sk-None- prefixed OpenAI API keys 
OpenAI issues keys with sk-None- prefix in both short (56 char) and long
(130+ char) formats. The existing openai.2 rule only matches long keys
with {100,} minimum length. This adds openai.3 to detect the short variant:
sk-None- followed by exactly 48 alphanumeric characters.

Fixes detection gap where trufflehog found valid keys that kingfisher missed.
 2026-01-13 13:40:16 +05:30
Mick Grove
abe546fd59 preparing v1.74.0 2026-01-12 22:51:40 -08:00
Mick Grove
4f18541cb6 preparing v1.74.0 2026-01-12 22:50:05 -08:00
Akshay Jain
98d009deae Add ScraperAPI key detection rule 
Adds a new rule to detect ScraperAPI keys with:
- Pattern matching for 32-character alphanumeric keys
- Live validation against ScraperAPI endpoint
- Medium confidence with entropy check (min 3.5)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
 2026-01-07 13:38:53 +05:30
Mick Grove
b54e5329a2 v1.73.0 2026-01-02 13:29:45 -08:00
Mick Grove
7237a931d5 v1.73.0 2026-01-01 22:24:57 -08:00
Mick Grove
587dfc5892 - Fixed deduplication for dependency-provider rules so dependent validations run per blob 
- Updated Artifactory rule entropy and added new artifactory rule
 2025-12-21 22:07:45 -08:00
Trever McKee
093dbd58f6 Add JFrog Artifactory Reference Token rule. 2025-12-19 11:11:29 -08:00
Mick Grove
0b8f98ea16 fixed rule 2025-12-17 12:21:26 -08:00
Mick Grove
1a496ba01d fixed rule 2025-12-17 12:03:51 -08:00