Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package gitleaks for openSUSE:Factory checked in at 2025-05-01 15:23:12 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gitleaks (Old) and /work/SRC/openSUSE:Factory/.gitleaks.new.30101 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gitleaks" Thu May 1 15:23:12 2025 rev:25 rq:1273747 version:8.25.1 Changes: -------- --- /work/SRC/openSUSE:Factory/gitleaks/gitleaks.changes 2025-04-30 19:03:56.841238076 +0200 +++ /work/SRC/openSUSE:Factory/.gitleaks.new.30101/gitleaks.changes 2025-05-01 15:23:30.519240694 +0200 @@ -1,0 +2,6 @@ +Wed Apr 30 21:18:45 UTC 2025 - Johannes Kastl <opensuse_buildserv...@ojkastl.de> + +- Update to version 8.25.1: + * fix(detect): test all allowlists (#1845) + +------------------------------------------------------------------- Old: ---- gitleaks-8.25.0.obscpio New: ---- gitleaks-8.25.1.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gitleaks.spec ++++++ --- /var/tmp/diff_new_pack.H9RZFv/_old 2025-05-01 15:23:31.211269692 +0200 +++ /var/tmp/diff_new_pack.H9RZFv/_new 2025-05-01 15:23:31.215269860 +0200 @@ -18,7 +18,7 @@ Name: gitleaks -Version: 8.25.0 +Version: 8.25.1 Release: 0 Summary: Protect and discover secrets using Gitleaks License: MIT ++++++ _service ++++++ --- /var/tmp/diff_new_pack.H9RZFv/_old 2025-05-01 15:23:31.255271536 +0200 +++ /var/tmp/diff_new_pack.H9RZFv/_new 2025-05-01 15:23:31.259271704 +0200 @@ -3,7 +3,7 @@ <param name="url">https://github.com/zricethezav/gitleaks</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v8.25.0</param> + <param name="revision">v8.25.1</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> <param name="changesgenerate">enable</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.H9RZFv/_old 2025-05-01 15:23:31.287272877 +0200 +++ /var/tmp/diff_new_pack.H9RZFv/_new 2025-05-01 15:23:31.291273045 +0200 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/zricethezav/gitleaks</param> - <param name="changesrevision">4451b455f3d6757985070ac244097acec4af74bb</param></service></servicedata> + <param name="changesrevision">d1c77598da5353c83c46d8a62be0d376a1b63bbb</param></service></servicedata> (No newline at EOF) ++++++ gitleaks-8.25.0.obscpio -> gitleaks-8.25.1.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gitleaks-8.25.0/detect/detect.go new/gitleaks-8.25.1/detect/detect.go --- old/gitleaks-8.25.0/detect/detect.go 2025-04-29 15:49:04.000000000 +0200 +++ new/gitleaks-8.25.1/detect/detect.go 2025-04-30 15:29:57.000000000 +0200 @@ -547,10 +547,10 @@ } // These will be checked later. if len(a.Regexes) > 0 { - return false, nil + continue } if len(a.StopWords) > 0 { - return false, nil + continue } isAllowed = allTrue(allowlistChecks) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gitleaks-8.25.0/detect/detect_test.go new/gitleaks-8.25.1/detect/detect_test.go --- old/gitleaks-8.25.0/detect/detect_test.go 2025-04-29 15:49:04.000000000 +0200 +++ new/gitleaks-8.25.1/detect/detect_test.go 2025-04-30 15:29:57.000000000 +0200 @@ -376,6 +376,13 @@ FilePath: "tmp.go", }, }, + "allowlist - ignore path when extending": { + cfgName: "valid/allowlist_rule_extend_default", + fragment: Fragment{ + Raw: `token = "aebfab88-7596-481d-82e8-c60c8f7de0c0"`, + FilePath: "path/to/your/problematic/file.js", + }, + }, "allowlist - ignore regex": { cfgName: "valid/allowlist_rule_regex", fragment: Fragment{ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gitleaks-8.25.0/testdata/config/valid/allowlist_rule_extend_default.toml new/gitleaks-8.25.1/testdata/config/valid/allowlist_rule_extend_default.toml --- old/gitleaks-8.25.0/testdata/config/valid/allowlist_rule_extend_default.toml 1970-01-01 01:00:00.000000000 +0100 +++ new/gitleaks-8.25.1/testdata/config/valid/allowlist_rule_extend_default.toml 2025-04-30 15:29:57.000000000 +0200 @@ -0,0 +1,11 @@ +# https://github.com/gitleaks/gitleaks/issues/1844 +[extend] +useDefault = true + +[[rules]] +id = "generic-api-key" +[[rules.allowlists]] +description = "Exclude a specific file from generic-api-key rule" +paths = [ + '''^path/to/your/problematic/file\.js$''' +] ++++++ gitleaks.obsinfo ++++++ --- /var/tmp/diff_new_pack.H9RZFv/_old 2025-05-01 15:23:31.563284443 +0200 +++ /var/tmp/diff_new_pack.H9RZFv/_new 2025-05-01 15:23:31.567284610 +0200 @@ -1,5 +1,5 @@ name: gitleaks -version: 8.25.0 -mtime: 1745934544 -commit: 4451b455f3d6757985070ac244097acec4af74bb +version: 8.25.1 +mtime: 1746019797 +commit: d1c77598da5353c83c46d8a62be0d376a1b63bbb ++++++ vendor.tar.gz ++++++