Update pre-commit hook gitleaks/gitleaks to v8.23.2 #63

renovate · 2025-01-13T16:22:42Z

This PR contains the following updates:

Package	Type	Update	Change
gitleaks/gitleaks	repository	minor	`v8.22.1` -> `v8.23.2`

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

Release Notes

gitleaks/gitleaks (gitleaks/gitleaks)

`v8.23.2`

Compare Source

Changelog

d88bc09 facebook keyword
3fdaefd fix(meraki): restrict keyword case (#1722)
f3ae52e feat(generic-api-key): detect base64 (#1598)
d6a828a great branch name (#1721)
d2ffffe fix(git): remove .git suffix for links (#1716)
a43dc0d chore: refine generic-api-key fps + trace logging (#1720)
69ed20e fix(generate): move newline out of char range (#1719)
52b895a newline literal (#1718)
3f4d91f build: support either stdlib or 3rd-party regexp (#1706)
049f5b2 chore(detect): update trace logging (#1713)
7a6183d feat(git): redact passwords from remote URL (#1709)
3c7f3f0 feat(git): include link in report (#1698)
0e3f4f7 chore: reduce generic-api-key fps (#1707)
3ed8567 blorp
e977850 added new rule for cisco meraki api key (#1700)
ad7a4fb feat: general fp tweaks (#1703)
b2cf03c chore(generate): use \x60 instead of literal (#1702)
a3f623c chore(regex): simplify secretPrefix, suffix (#1620)
cc71bb1 update version for pre-commit in README.md (#1699)

`v8.23.1`

Compare Source

Changelog

7bad9f7 chore(gcp): add firebase example keys to the gcp-api-key allowlists (#1635)
977236c fix: unaligned 64-bit atomic operation panic (#1696)
a211b16 force push to master everyday
0e5f644 feat(config): disable extended rule (#1535)
f320a60 style: prevent globbing and word splitting (#1543)
c4526b2 refactor(generic-api-key): remove hard-coded 'magic' (#1600)
748076d chore(generate): add failing test case (#1690)

`v8.23.0`

Compare Source

Changelog

db8e5e6 feat(generate): use multiple allowlists (#1691)
973c794 chore(rules): include fps in reference (#1471)
f0d4499 Add comma as operator for GenerateSemiGenericRegex (#1679)
ab38a46 refactor: central logger (#1692)
b022d1c friendship ended with tines

READ THIS!!! The default gitleaks config now uses [[rules.allowlists]]

##### ⚠️ In v8.21.0 `[rules.allowlist]` was replaced with `[[rules.allowlists]]`.
##### This change was backwards-compatible: instances of `[rules.allowlist]` still  work.
    #

##### You can define multiple allowlists for a rule to reduce false positives.
##### A finding will be ignored if _ANY_ `[[rules.allowlists]]` matches.
    [[rules.allowlists]]
    description = "ignore commit A"

##### When multiple criteria are defined the default condition is "OR".
##### e.g., this can match on |commits| OR |paths| OR |stopwords|.
    condition = "OR"
    commits = [ "commit-A", "commit-B"]
    paths = [
      '''go\.mod''',
      '''go\.sum'''
    ]

##### note: stopwords targets the extracted secret, not the entire regex match
##### like 'regexes' does. (stopwords introduced in 8.8.0)
    stopwords = [
      '''client''',
      '''endpoint''',
    ]

    [[rules.allowlists]]

##### The "AND" condition can be used to make sure all criteria match.
##### e.g., this matches if |regexes| AND |paths| are satisfied.
    condition = "AND"

##### note: |regexes| defaults to check the _Secret_ in the finding.
##### Acceptable values for |regexTarget| are "secret" (default), "match", and "line".
    regexTarget = "match"
    regexes = [ '''(?i)parseur[il]''' ]
    paths = [ '''package-lock\.json''' ]

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

| datasource | package | from | to | | ----------- | ----------------- | ------- | ------- | | github-tags | gitleaks/gitleaks | v8.22.1 | v8.23.2 | Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

renovate bot added the dependencies Pull requests that update a dependency file label Jan 13, 2025

renovate bot enabled auto-merge (squash) January 13, 2025 16:22

renovate bot changed the title ~~Update pre-commit hook gitleaks/gitleaks to v8.23.0~~ Update pre-commit hook gitleaks/gitleaks to v8.23.1 Jan 15, 2025

renovate bot changed the title ~~Update pre-commit hook gitleaks/gitleaks to v8.23.1~~ Update pre-commit hook gitleaks/gitleaks to v8.23.2 Jan 24, 2025

pdabelf5 approved these changes Jan 27, 2025

View reviewed changes

renovate bot force-pushed the renovate/gitleaks-gitleaks-8.x branch 2 times, most recently from 1a7845e to d5c292e Compare January 27, 2025 14:59

renovate bot force-pushed the renovate/gitleaks-gitleaks-8.x branch from d5c292e to e2db313 Compare January 27, 2025 15:02

renovate bot merged commit 933b6b3 into main Jan 27, 2025
4 checks passed

renovate bot deleted the renovate/gitleaks-gitleaks-8.x branch January 27, 2025 15:03

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update pre-commit hook gitleaks/gitleaks to v8.23.2 #63

Update pre-commit hook gitleaks/gitleaks to v8.23.2 #63

renovate bot commented Jan 13, 2025 •

edited

Loading

Update pre-commit hook gitleaks/gitleaks to v8.23.2 #63

Update pre-commit hook gitleaks/gitleaks to v8.23.2 #63

Conversation

renovate bot commented Jan 13, 2025 • edited Loading

Release Notes

v8.23.2

Changelog

v8.23.1

Changelog

v8.23.0

Changelog

Configuration

renovate bot commented Jan 13, 2025 •

edited

Loading

`v8.23.2`

`v8.23.1`

`v8.23.0`