commit trufflehog for openSUSE:Factory

Source-Sync Fri, 16 Aug 2024 03:32:34 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package trufflehog for openSUSE:Factory 
checked in at 2024-08-16 12:23:44
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/trufflehog (Old)
 and      /work/SRC/openSUSE:Factory/.trufflehog.new.2698 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "trufflehog"

Fri Aug 16 12:23:44 2024 rev:44 rq:1194108 version:3.81.8

Changes:
--------
--- /work/SRC/openSUSE:Factory/trufflehog/trufflehog.changes    2024-08-01 
22:05:19.910699856 +0200
+++ /work/SRC/openSUSE:Factory/.trufflehog.new.2698/trufflehog.changes  
2024-08-16 12:24:22.764850995 +0200
@@ -1,0 +2,109 @@
+Thu Aug 15 08:49:23 UTC 2024 - felix.niederwan...@suse.de
+
+- Update to version 3.81.8:
+  * [chore] Ignore analyzer implementation tests in test-community (#3219)
+  * [chore] Fix lint errors (#3218)
+  * [analyze] Fix GitHub token expiration parsing (#3205)
+  * [analyze] Capture the hierarchy of GitHub permissions (#3127)
+  * chore(deps): update sigstore/cosign-installer action to v3.6.0 (#3211)
+  * Add metrics for command invocation (#3185)
+  * remove two letter keyword (#3210)
+  * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6 
(#3208)
+  * Capture decoding time metric (#3209)
+  * fix(deps): update module github.com/google/go-containerregistry to v0.20.2 
(#3184)
+  * [bug] - Correctly Handle Large Files in BufferedReadSeeker (#3203)
+  * Log when a detector ignores the timeout (#3201)
+  * fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 (#3197)
+  * [analyze] Fix double-print in postgres analyzer (#3199)
+  * fix(deps): update module golang.org/x/net to v0.28.0 (#3187)
+  * [analyze] Deduplicate finegrained GitHub permissions (#3196)
+  * Fixes for a few finegrained token issues (#3194)
+  * [analyze] Add basic section to README (#3190)
+  * [analyze] Bandaid solution for occasional slow startups (#3191)
+  * Analyzer capitalization (#3188)
+  * [analyze] Add analyze option to main TUI and unhide subcommand (#3186)
+  * fix(deps): update module golang.org/x/text to v0.17.0 (#3183)
+  * fix(deps): update module golang.org/x/crypto to v0.26.0 (#3182)
+  * Improve finegrained token support (#3179)
+  * [chore] Use custom HTTP client in sendgrid analyzer (#3178)
+  * [analyze] Separate SID from token in twilio analyzer (#3177)
+  * Analyze TUI (#3172)
+  * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to 
v1.1.0 (#3176)
+  * Auth GitHub in Init (#3131)
+  * Change log verbosity for detection errors (#3171)
+  * fix(deps): update github.com/tailscale/depaware digest to 585336c (#3166)
+  * fix(deps): update module golang.org/x/sync to v0.8.0 (#3169)
+  * fix(deps): update module golang.org/x/oauth2 to v0.22.0 (#3168)
+  * Update Zulip detector (#2897)
+  * update pattern (#3167)
+  * [analyze] Use permission enum values in openai analyzer (#3165)
+  * [bug] - Create a new context with timeout per request (#3163)
+  * [analyze] Fix off-by-one error in generated data structures (#3162)
+  * fix(deps): update module github.com/schollz/progressbar/v3 to v3.14.6 
(#3158)
+  * Update README.md (#3160)
+  * [bug] - add context timeout to ssh verification (#3161)
+  * [chore] - log detector type on error (#3159)
+  * [chore] - set custom transport for the Docker client (#3156)
+  * Add Analyzers interface for HuggingFace (#3140)
+  * quick patch for cfor enumeration (#3155)
+  * fix(deps): update module google.golang.org/api to v0.190.0 (#3146)
+  * Add Analyzers interface for Square (#3141)
+  * enable mutex and block profiler (#3154)
+  * [fix] Always configure the engine with the default detectors (#3152)
+  * Add progress bar to CFOR (#3151)
+  * [perf] -  Leverage pgzip for Parallel decompression (#3149)
+  * CFOR Commit Scanner (#3145)
+  * [chore] Only set default detectors if none are provided (#3147)
+  * add twilio analyze relationships (#3148)
+  * [chore] - move automaxprocs to init (#3143)
+  * [analyze] Combine access level into permission value (#3144)
+  * Add Analyze interface to Stripe (#3132)
+  * move concurrency (#3135)
+  * [chore] - address linter (#3133)
+  * [chore] - Set GOMAXPROCS (#3136)
+  * Export maps from permission generation (#3137)
+  * Add permissions lookup tables (#3125)
+  * Separate out printing statements with anlayzer logic for SourceGraph 
(#3119)
+  * nitro detector was removed and needed to be deprecated (#3102)
+  * Separate out printing statements with anlayzer logic for Stripe (#3120)
+  * Separate out printing statements with anlayzer logic for Slack (#3121)
+  * Update GitHub integration tests (#3124)
+  * Add new canary ID (#3117)
+  * Separated printing and analyzes functionality for twilio (#3118)
+  * Separated printing and analyzes functionality for square (#3122)
+  * Separated printing and analyzes functionality for shopify (#3123)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.5 (#3116)
+  * Analyzer partial implementations (#3114)
+  * Include default detectors when using a config that contains detectors 
(#3115)
+  * Use non-canary credentials for AWS tests (#3109)
+  * fix dep versions (#3106)
+  * [analyze] Add description and user to openai metadata (#3111)
+  * Support openai project and fine grained tokens (#3112)
+  * [analyze] Implement Analyzer interface for github (#3110)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.3 (#3107)
+  * [chore] Move openai log message to proper function (#3105)
+  * fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.5 
(#3108)
+  * Implement Analyzer interface for openai (#3101)
+  * [chore] Fix Versioner interface for twitter (#3104)
+  * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.5 
(#3096)
+  * Analyze (#3099)
+  * chore: fix some comments (#3098)
+  * [bug]-  Invalid Seek for Non-Seekable Readers (#3095)
+  * remove deps from docker image (#3097)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.2 (#3094)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.1 (#3087)
+  * fixed crash issue if data array is empty (#3091)
+  * Remove onwater detector (#3088)
+  * implemented a netsuite detector (#3068)
+  * fix(deps): update module google.golang.org/api to v0.189.0 (#3086)
+  * fix(deps): update module github.com/googleapis/gax-go/v2 to v2.13.0 (#3085)
+  * fix(deps): update golang.org/x/exp digest to 8a7402a (#3083)
+  * fix(deps): update module github.com/couchbase/gocb/v2 to v2.9.1 (#3078)
+  * [chore] - Reduce `VerificationOverlapWorker`s (#3082)
+  * add verify check (#3079)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.54.20 (#3077)
+  * Added Twitter v2 Detector (#3016)
+  * chore: fix .goreleaser.yml and goreleaser usage for goreleaser v2 (#3073)
+  * fix(deps): update golang.org/x/exp digest to e3f2596 (#3071)
+
+-------------------------------------------------------------------

Old:
----
  trufflehog-3.80.5.obscpio

New:
----
  trufflehog-3.81.8.obscpio

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ trufflehog.spec ++++++
--- /var/tmp/diff_new_pack.UYK05V/_old  2024-08-16 12:24:24.264913335 +0200
+++ /var/tmp/diff_new_pack.UYK05V/_new  2024-08-16 12:24:24.264913335 +0200
@@ -17,7 +17,7 @@
 
 
 Name:           trufflehog
-Version:        3.80.5
+Version:        3.81.8
 Release:        0
 Summary:        CLI tool to find exposed secrets in source and archives
 License:        AGPL-3.0-or-later

++++++ _service ++++++
--- /var/tmp/diff_new_pack.UYK05V/_old  2024-08-16 12:24:24.300914832 +0200
+++ /var/tmp/diff_new_pack.UYK05V/_new  2024-08-16 12:24:24.304914997 +0200
@@ -3,7 +3,7 @@
     <param name="url">https://github.com/trufflesecurity/trufflehog.git</param>
     <param name="scm">git</param>
     <param name="revision">main</param>
-    <param name="version">v3.80.5</param>
+    <param name="version">v3.81.8</param>
        <param name="versionrewrite-pattern">v(.*)</param>
        <param name="changesgenerate">enable</param>
   </service>

++++++ trufflehog-3.80.5.obscpio -> trufflehog-3.81.8.obscpio ++++++
/work/SRC/openSUSE:Factory/trufflehog/trufflehog-3.80.5.obscpio 
/work/SRC/openSUSE:Factory/.trufflehog.new.2698/trufflehog-3.81.8.obscpio 
differ: char 49, line 1

++++++ trufflehog.obsinfo ++++++
--- /var/tmp/diff_new_pack.UYK05V/_old  2024-08-16 12:24:24.340916494 +0200
+++ /var/tmp/diff_new_pack.UYK05V/_new  2024-08-16 12:24:24.344916660 +0200
@@ -1,5 +1,5 @@
 name: trufflehog
-version: 3.80.5
-mtime: 1722477498
-commit: 048ec26c9261f70732d4403df2f45561c41c8161
+version: 3.81.8
+mtime: 1723669345
+commit: daa45cfac4303f30c05e49f0c62443858cac0be7
 

++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/trufflehog/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.trufflehog.new.2698/vendor.tar.gz differ: char 5, 
line 1

commit trufflehog for openSUSE:Factory

Reply via email to