commit gitleaks for openSUSE:Factory

Source-Sync Thu, 01 May 2025 06:24:35 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package gitleaks for openSUSE:Factory 
checked in at 2025-05-01 15:23:12
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/gitleaks (Old)
 and      /work/SRC/openSUSE:Factory/.gitleaks.new.30101 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "gitleaks"

Thu May  1 15:23:12 2025 rev:25 rq:1273747 version:8.25.1

Changes:
--------
--- /work/SRC/openSUSE:Factory/gitleaks/gitleaks.changes        2025-04-30 
19:03:56.841238076 +0200
+++ /work/SRC/openSUSE:Factory/.gitleaks.new.30101/gitleaks.changes     
2025-05-01 15:23:30.519240694 +0200
@@ -1,0 +2,6 @@
+Wed Apr 30 21:18:45 UTC 2025 - Johannes Kastl 
<opensuse_buildserv...@ojkastl.de>
+
+- Update to version 8.25.1:
+  * fix(detect): test all allowlists (#1845)
+
+-------------------------------------------------------------------

Old:
----
  gitleaks-8.25.0.obscpio

New:
----
  gitleaks-8.25.1.obscpio

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ gitleaks.spec ++++++
--- /var/tmp/diff_new_pack.H9RZFv/_old  2025-05-01 15:23:31.211269692 +0200
+++ /var/tmp/diff_new_pack.H9RZFv/_new  2025-05-01 15:23:31.215269860 +0200
@@ -18,7 +18,7 @@
 
 
 Name:           gitleaks
-Version:        8.25.0
+Version:        8.25.1
 Release:        0
 Summary:        Protect and discover secrets using Gitleaks
 License:        MIT

++++++ _service ++++++
--- /var/tmp/diff_new_pack.H9RZFv/_old  2025-05-01 15:23:31.255271536 +0200
+++ /var/tmp/diff_new_pack.H9RZFv/_new  2025-05-01 15:23:31.259271704 +0200
@@ -3,7 +3,7 @@
     <param name="url">https://github.com/zricethezav/gitleaks</param>
     <param name="scm">git</param>
     <param name="exclude">.git</param>
-    <param name="revision">v8.25.0</param>
+    <param name="revision">v8.25.1</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="changesgenerate">enable</param>

++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.H9RZFv/_old  2025-05-01 15:23:31.287272877 +0200
+++ /var/tmp/diff_new_pack.H9RZFv/_new  2025-05-01 15:23:31.291273045 +0200
@@ -1,6 +1,6 @@
 <servicedata>
 <service name="tar_scm">
                 <param 
name="url">https://github.com/zricethezav/gitleaks</param>
-              <param 
name="changesrevision">4451b455f3d6757985070ac244097acec4af74bb</param></service></servicedata>
+              <param 
name="changesrevision">d1c77598da5353c83c46d8a62be0d376a1b63bbb</param></service></servicedata>
 (No newline at EOF)
 

++++++ gitleaks-8.25.0.obscpio -> gitleaks-8.25.1.obscpio ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/gitleaks-8.25.0/detect/detect.go 
new/gitleaks-8.25.1/detect/detect.go
--- old/gitleaks-8.25.0/detect/detect.go        2025-04-29 15:49:04.000000000 
+0200
+++ new/gitleaks-8.25.1/detect/detect.go        2025-04-30 15:29:57.000000000 
+0200
@@ -547,10 +547,10 @@
                        }
                        // These will be checked later.
                        if len(a.Regexes) > 0 {
-                               return false, nil
+                               continue
                        }
                        if len(a.StopWords) > 0 {
-                               return false, nil
+                               continue
                        }
 
                        isAllowed = allTrue(allowlistChecks)
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/gitleaks-8.25.0/detect/detect_test.go 
new/gitleaks-8.25.1/detect/detect_test.go
--- old/gitleaks-8.25.0/detect/detect_test.go   2025-04-29 15:49:04.000000000 
+0200
+++ new/gitleaks-8.25.1/detect/detect_test.go   2025-04-30 15:29:57.000000000 
+0200
@@ -376,6 +376,13 @@
                                FilePath: "tmp.go",
                        },
                },
+               "allowlist - ignore path when extending": {
+                       cfgName: "valid/allowlist_rule_extend_default",
+                       fragment: Fragment{
+                               Raw:      `token = 
"aebfab88-7596-481d-82e8-c60c8f7de0c0"`,
+                               FilePath: "path/to/your/problematic/file.js",
+                       },
+               },
                "allowlist - ignore regex": {
                        cfgName: "valid/allowlist_rule_regex",
                        fragment: Fragment{
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/gitleaks-8.25.0/testdata/config/valid/allowlist_rule_extend_default.toml 
new/gitleaks-8.25.1/testdata/config/valid/allowlist_rule_extend_default.toml
--- 
old/gitleaks-8.25.0/testdata/config/valid/allowlist_rule_extend_default.toml    
    1970-01-01 01:00:00.000000000 +0100
+++ 
new/gitleaks-8.25.1/testdata/config/valid/allowlist_rule_extend_default.toml    
    2025-04-30 15:29:57.000000000 +0200
@@ -0,0 +1,11 @@
+# https://github.com/gitleaks/gitleaks/issues/1844
+[extend]
+useDefault = true
+
+[[rules]]
+id = "generic-api-key"
+[[rules.allowlists]]
+description = "Exclude a specific file from generic-api-key rule"
+paths = [
+    '''^path/to/your/problematic/file\.js$'''
+]

++++++ gitleaks.obsinfo ++++++
--- /var/tmp/diff_new_pack.H9RZFv/_old  2025-05-01 15:23:31.563284443 +0200
+++ /var/tmp/diff_new_pack.H9RZFv/_new  2025-05-01 15:23:31.567284610 +0200
@@ -1,5 +1,5 @@
 name: gitleaks
-version: 8.25.0
-mtime: 1745934544
-commit: 4451b455f3d6757985070ac244097acec4af74bb
+version: 8.25.1
+mtime: 1746019797
+commit: d1c77598da5353c83c46d8a62be0d376a1b63bbb
 

++++++ vendor.tar.gz ++++++

commit gitleaks for openSUSE:Factory

Reply via email to