eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
kingfisher/src
History
Mick Grove 03d7364888 - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 
- Condensed GitError formatting to report the exit status and the first informative lines from stdout/stderr, producing concise git clone failure logs.
- Added support for scanning Google Cloud Storage buckets via --gcs-bucket, including optional prefixes and service-account authentication.
- Added --skip-aws-account (now accepting comma-separated values) and --skip-aws-account-file to bypass live AWS validation for known canary/honey-token account IDs without triggering alerts. Kingfisher now ships with several canary AWS account IDs pre-seeded in the skip list and now reports matching findings as "Not Attempted" with the "Response" containing "(skip list entry)" so its clear that validation was intentionally skipped and why.
2025-10-15 22:47:40 -07:00
..
cli - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
parser preparing for v1.12 2025-06-24 17:17:16 -07:00
reporter - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
rules Replaced Match::finding_id’s SHA1-based hashing with a fast xxh3_64 digest that keeps IDs deterministic while eliminating a hot-path SHA1 dependency 2025-09-24 12:22:56 -07:00
scanner - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
validation - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
azure.rs Fixed test 2025-10-05 18:07:45 -07:00
baseline.rs - Added '--repo-artifacts' flag to scan repository issues, gists/snippets, and wikis when cloning via '--git-url' 2025-08-20 20:41:19 -07:00
binary.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
bitbucket.rs Added support for BitBucket 2025-09-22 18:21:03 -07:00
blob.rs - Improved error message when self-update cannot find the current binary 2025-09-04 21:51:24 -07:00
bstring_escape.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
bstring_table.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
confluence.rs fixed failing tests 2025-08-17 17:41:34 -07:00
content_type.rs Optimized memory usage via string interning and extensive data sharing 2025-09-02 19:54:44 -07:00
decompress.rs preparing for v1.48.0 2025-09-05 09:31:52 -07:00
defaults.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
entropy.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
finding_data.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
findings_store.rs Optimized memory usage via string interning and extensive data sharing 2025-09-02 19:54:44 -07:00
gcs.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
git_binary.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
git_commit_metadata.rs removed serde_utils and added Authress rule 2025-08-16 07:33:36 -07:00
git_metadata_graph.rs code cleanup' 2025-08-15 09:07:25 -07:00
git_repo_enumerator.rs removed serde_utils and added Authress rule 2025-08-16 07:33:36 -07:00
git_url.rs Populate the finding path from git blob metadata so history-derived secrets display their file location instead of an empty path 2025-09-24 10:06:47 -07:00
gitea.rs Added support for Gitea 2025-09-23 13:07:45 -07:00
github.rs Added a new CLI flag, --user-agent-suffix to allow developers to append additional information to the user-agent 2025-09-18 14:11:54 -07:00
gitlab.rs Added --github-exclude and --gitlab-exclude options to skip specific repositories when scanning or listing GitHub and GitLab sources, including support for gitignore-style glob patterns 2025-09-15 21:26:51 -07:00
guesser.rs Improved language detection 2025-08-15 16:08:46 -07:00
huggingface.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
inline_ignore.rs kingfisher:ignore is only directive built-in 2025-10-11 15:27:21 -07:00
jira.rs - New rules: Telegram bot token, OpenWeatherMap, Apify 2025-08-01 16:56:04 -07:00
lib.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
liquid_filters.rs - New rules: Telegram bot token, OpenWeatherMap, Apify 2025-08-01 16:56:04 -07:00
location.rs - Improved error message when self-update cannot find the current binary 2025-09-04 21:51:24 -07:00
main.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
matcher.rs - Added a --no-ignore CLI flag to disable inline directives when you need every potential secret reported 2025-10-10 16:23:41 -07:00
origin.rs removed serde_utils and added Authress rule 2025-08-16 07:33:36 -07:00
parser.rs updated README 2025-07-17 15:11:35 -07:00
reporter.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00
rule_loader.rs fixed failing tests 2025-08-17 17:41:34 -07:00
rule_profiling.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
rules.rs refactored rule loading 2025-08-15 13:13:33 -07:00
rules_database.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
s3.rs refactored output reporting and formatting logic 2025-08-04 08:58:06 -07:00
safe_list.rs Added '--skip-regex' and '--skip-word' flags to ignore secrets matching custom patterns or skipwords 2025-08-19 19:18:25 -07:00
scanner_pool.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
slack.rs - New rules: Telegram bot token, OpenWeatherMap, Apify 2025-08-01 16:56:04 -07:00
snippet.rs preparing for v1.12 2025-06-24 17:17:16 -07:00
update.rs kingfisher:ignore is only directive built-in 2025-10-11 18:04:00 -07:00
util.rs updated test 2025-06-28 09:20:44 -07:00
validation.rs - Added first-class Hugging Face scanning support, including CLI enumeration, token authentication, and integration with remote scans. 2025-10-15 22:47:40 -07:00