Skip to content

Commit

Permalink
chore: bump trufflesecurity/trufflehog from 3.84.2 to 3.85.0 (#1524)
Browse files Browse the repository at this point in the history 
Bumps
[trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog)
from 3.84.2 to 3.85.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/trufflesecurity/trufflehog/releases">trufflesecurity/trufflehog's
releases</a>.</em></p>
<blockquote>
<h2>v3.85.0</h2>
<h2>What's Changed</h2>
<ul>
<li>fixed issue#3701 by <a
href="https://github.com/kashifkhan0771"><code>@​kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3711">trufflesecurity/trufflehog#3711</a></li>
<li>Fix/saucelabs detector by <a
href="https://github.com/kashifkhan0771"><code>@​kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3696">trufflesecurity/trufflehog#3696</a></li>
<li>fixed scalr detector integration test by <a
href="https://github.com/kashifkhan0771"><code>@​kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3707">trufflesecurity/trufflehog#3707</a></li>
<li>Replace <code>--debug</code> and <code>--trace</code> with a
fine-grained <code>--log-level</code> flag by <a
href="https://github.com/rgmz"><code>@​rgmz</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3703">trufflesecurity/trufflehog#3703</a></li>
<li>fixed and updated satismeterwritekey detector by <a
href="https://github.com/kashifkhan0771"><code>@​kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3693">trufflesecurity/trufflehog#3693</a></li>
<li>Improved cloudflarecakey detector by <a
href="https://github.com/kashifkhan0771"><code>@​kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3688">trufflesecurity/trufflehog#3688</a></li>
<li>[chore] - add pkg level doc by <a
href="https://github.com/ahrav"><code>@​ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3684">trufflesecurity/trufflehog#3684</a></li>
<li>Add Flexport detector by <a
href="https://github.com/0x1"><code>@​0x1</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3633">trufflesecurity/trufflehog#3633</a></li>
<li>Added how to scan a local git repo by <a
href="https://github.com/za"><code>@​za</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3593">trufflesecurity/trufflehog#3593</a></li>
<li>[chore] - manually upgrade Github dep by <a
href="https://github.com/ahrav"><code>@​ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3699">trufflesecurity/trufflehog#3699</a></li>
<li>[chore] - fix typo by <a
href="https://github.com/ahrav"><code>@​ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3683">trufflesecurity/trufflehog#3683</a></li>
<li>[refactor] - <code>detectorKeywordMatcher</code> initialization by
<a href="https://github.com/ahrav"><code>@​ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3687">trufflesecurity/trufflehog#3687</a></li>
<li>fix(deps): update module github.com/aymanbagabas/go-osc52 to v2 by
<a href="https://github.com/renovate"><code>@​renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3715">trufflesecurity/trufflehog#3715</a></li>
<li>Add additional canary ID by <a
href="https://github.com/dustin-decker"><code>@​dustin-decker</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3720">trufflesecurity/trufflehog#3720</a></li>
<li>fix(deps): update module github.com/getsentry/sentry-go to v0.30.0
by <a href="https://github.com/renovate"><code>@​renovate</code></a> in
<a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3725">trufflesecurity/trufflehog#3725</a></li>
<li>chore(deps): update dependency go to v1.23.4 by <a
href="https://github.com/renovate"><code>@​renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3726">trufflesecurity/trufflehog#3726</a></li>
<li>feat(typeform): add v2 detector for new key formats by <a
href="https://github.com/ggmolly"><code>@​ggmolly</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3660">trufflesecurity/trufflehog#3660</a></li>
<li>fix(deps): update module golang.org/x/sync to v0.10.0 by <a
href="https://github.com/renovate"><code>@​renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3730">trufflesecurity/trufflehog#3730</a></li>
<li>fix(deps): update module golang.org/x/text to v0.21.0 by <a
href="https://github.com/renovate"><code>@​renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3731">trufflesecurity/trufflehog#3731</a></li>
<li>Add analysis info for GCP creds by <a
href="https://github.com/bill-rich"><code>@​bill-rich</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3727">trufflesecurity/trufflehog#3727</a></li>
<li>updated twilio detector by <a
href="https://github.com/kashifkhan0771"><code>@​kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3734">trufflesecurity/trufflehog#3734</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/za"><code>@​za</code></a> made their
first contribution in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3593">trufflesecurity/trufflehog#3593</a></li>
<li><a href="https://github.com/ggmolly"><code>@​ggmolly</code></a> made
their first contribution in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3660">trufflesecurity/trufflehog#3660</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/trufflesecurity/trufflehog/compare/v3.84.2...v3.85.0">https://github.com/trufflesecurity/trufflehog/compare/v3.84.2...v3.85.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/710d09ba85a0b34cea5592f3a42aae7db5d1a279"><code>710d09b</code></a>
updated twilio detector (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3734">#3734</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/4cd055fe3f13b5e17fcb19553c623f1f2720e9f3"><code>4cd055f</code></a>
Add analysis info for GCP creds (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3727">#3727</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/00d46194baae6599420c945333b119502a31f122"><code>00d4619</code></a>
fix(deps): update module golang.org/x/text to v0.21.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3731">#3731</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/ccac6c28576c7341f4ffdcc6ebcc58e6bf4014d7"><code>ccac6c2</code></a>
fix(deps): update module golang.org/x/sync to v0.10.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3730">#3730</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/2e5a7e6440fb05bfbbc192e9437aeb0c171b8719"><code>2e5a7e6</code></a>
feat(typeform): add v2 detector for new key formats (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3660">#3660</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/21698083c5ff0e3c518c4ae44798fcb7dd1b673f"><code>2169808</code></a>
chore(deps): update dependency go to v1.23.4 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3726">#3726</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/f944716ff055ebb5975fe6647780b4fa1dc4d637"><code>f944716</code></a>
fix(deps): update module github.com/getsentry/sentry-go to v0.30.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3725">#3725</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/596d5f056891eab05df0fb2fc24c046a6b5dae13"><code>596d5f0</code></a>
Add additional canary ID (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3720">#3720</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/42f01f08a6305f62cdf7c652d18739001ef5f987"><code>42f01f0</code></a>
fix(deps): update module github.com/aymanbagabas/go-osc52 to v2 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3715">#3715</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/22032f763873df85931c7bff883077d62f66608e"><code>22032f7</code></a>
[refactor] - <code>detectorKeywordMatcher</code> initialization (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3687">#3687</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/trufflesecurity/trufflehog/compare/35943b41905eb1195f021955da17c233ed555e24...710d09ba85a0b34cea5592f3a42aae7db5d1a279">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=trufflesecurity/trufflehog&package-manager=github_actions&previous-version=3.84.2&new-version=3.85.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
@dependabot
dependabot[bot] authored Dec 5, 2024
1 parent 072eca4 commit 2f9b419
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion .github/workflows/secret-scan.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,6 @@ jobs:
with:
fetch-depth: 0
- name: Default Secret Scanning
uses: trufflesecurity/trufflehog@35943b41905eb1195f021955da17c233ed555e24 # main
uses: trufflesecurity/trufflehog@710d09ba85a0b34cea5592f3a42aae7db5d1a279 # main
with:
extra_args: --debug --no-verification # Warn on potential violations

0 comments on commit 2f9b419

Please sign in to comment.