chore: bump trufflesecurity/trufflehog from 3.88.2 to 3.88.3 #1746

dependabot · 2025-01-29T22:44:45Z

Bumps trufflesecurity/trufflehog from 3.88.2 to 3.88.3.

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.88.3

What's Changed

[chore] Use static token in GitHub source by @mcastorina in trufflesecurity/trufflehog#3834

Update log for large s3 file by @0x1 in trufflesecurity/trufflehog#3835

oss-87: added new sanity detector by @kashifkhan0771 in trufflesecurity/trufflehog#3836

Support for Customize Endpoint in Gitlab Analyzer by @abmussani in trufflesecurity/trufflehog#3832

fixed jirav1 detector email pattern by @kashifkhan0771 in trufflesecurity/trufflehog#3826

Actually run unit tests by @rgmz in trufflesecurity/trufflehog#3773

Run detector tests from test workflow by @rgmz in trufflesecurity/trufflehog#3839

issue:3838 - fixed common email pattern by @kashifkhan0771 in trufflesecurity/trufflehog#3840

[Fix] Opsgenie Analyzer Http Client by @abmussani in trufflesecurity/trufflehog#3841

[chore] - fix import issue by @ahrav in trufflesecurity/trufflehog#3842

[URI] Do not attempt multiple verification attempts if host is non-resolvable by @rgmz in trufflesecurity/trufflehog#3656

Remove if len(match) != 2 check in detectors by @rgmz in trufflesecurity/trufflehog#2746

Fix Ngrok detector by @rgmz in trufflesecurity/trufflehog#3844

fix ngrok test by @zricethezav in trufflesecurity/trufflehog#3845

Remove global variable scanning implementation for Postman by @casey-tran in trufflesecurity/trufflehog#3843

fixed sentry auth token detector by @kashifkhan0771 in trufflesecurity/trufflehog#3827

Fix typo in scope description by @hxnyk in trufflesecurity/trufflehog#3846

use first capture group in custom detector regex if available by @zricethezav in trufflesecurity/trufflehog#3853

Improve Jenkins error message by @rosecodym in trufflesecurity/trufflehog#3855

[Fix] use unrestricted http client only for non-safe requests by @abmussani in trufflesecurity/trufflehog#3847

New Contributors

@casey-tran made their first contribution in trufflesecurity/trufflehog#3843

Full Changelog: trufflesecurity/trufflehog@v3.88.2...v3.88.3

Commits

b6b00bb [Fix] use unrestricted http client only for non-safe requests (#3847)
d509097 update jenkins err message (#3855)
7550057 use first capture group in custom detector regex if available (#3853)
20a3840 fix typo (#3846)
39d2453 fixed sentry auth token detector (#3827)
1fc8961 Removed global variable scanning implementationfor Postman (#3843)
eea7e06 raw (#3845)
1a1fe7b fix(ngrok): panic from broken pattern (#3844)
8723f85 chore(detectors): remove match len check (#2746)
278251a feat(uri): update detector (#3656)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.88.2 to 3.88.3. - [Release notes](https://github.com/trufflesecurity/trufflehog/releases) - [Changelog](https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml) - [Commits](trufflesecurity/trufflehog@a94d152...b6b00bb) --- updated-dependencies: - dependency-name: trufflesecurity/trufflehog dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Jan 29, 2025

dependabot bot requested a review from a team as a code owner January 29, 2025 22:44

dependabot bot added the github_actions Pull requests that update GitHub Actions code label Jan 29, 2025

samayer12 approved these changes Jan 29, 2025

View reviewed changes

samayer12 enabled auto-merge January 29, 2025 22:50

samayer12 added this pull request to the merge queue Jan 29, 2025

Merged via the queue into main with commit afd0dbf Jan 29, 2025
46 checks passed

samayer12 deleted the dependabot/github_actions/trufflesecurity/trufflehog-3.88.3 branch January 29, 2025 23:01

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: bump trufflesecurity/trufflehog from 3.88.2 to 3.88.3 #1746

chore: bump trufflesecurity/trufflehog from 3.88.2 to 3.88.3 #1746

dependabot bot commented on behalf of github Jan 29, 2025

chore: bump trufflesecurity/trufflehog from 3.88.2 to 3.88.3 #1746

chore: bump trufflesecurity/trufflehog from 3.88.2 to 3.88.3 #1746

Conversation

dependabot bot commented on behalf of github Jan 29, 2025

v3.88.3

What's Changed

New Contributors