Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Refactor GitHub source #2379

Merged
merged 4 commits into from
Mar 21, 2024

Conversation

rgmz
Copy link
Contributor

@rgmz rgmz commented Feb 5, 2024

Description:

This PR refactors the code for the GitHub source. The main changes are:

  • Consolidate information like size and visibility into a single repoInfo cache.
  • Remove the unnecessary API request in visibilityOf by storing visibility information during initial enumeration (as mentioned in Assume unauthenticated github scans have public visibility #2308 (comment)).
  • Move the git.CmdCheck to the top of the Init method, as there's no point in doing additional work if Git isn't installed correctly.
  • Remove unnecessary logic under scanComments, such as passing in the repoUrl (string), the repoUrl (url.URL), and the repo URL in segments.
  • Move hasWiki check to happen during repo scanning, not at startup
  • Refactor scanErrs.String() to produce distinct error messages rather than one long string.

Checklist:

  • Tests passing (make test-community)?
  • Lint passing (make lint this requires golangci-lint)?

@rgmz rgmz force-pushed the refactor/github-repoinfo-struct branch from f9a734b to 7cc1cbc Compare February 5, 2024 14:10
@rgmz rgmz marked this pull request as ready for review February 5, 2024 14:10
@rgmz rgmz requested a review from a team as a code owner February 5, 2024 14:10
@rgmz rgmz force-pushed the refactor/github-repoinfo-struct branch from 7cc1cbc to 26fb270 Compare February 5, 2024 14:12
@rosecodym
Copy link
Collaborator

I'm guessing that this should probably wait for #2385 and possibly the resolution to #2371 in order to avoid merge conflicts.

@rgmz rgmz force-pushed the refactor/github-repoinfo-struct branch from 26fb270 to 9173e6f Compare February 8, 2024 13:53
@rgmz rgmz requested a review from a team as a code owner February 9, 2024 02:15
@rgmz rgmz force-pushed the refactor/github-repoinfo-struct branch 3 times, most recently from 135dc20 to ebb8f61 Compare February 9, 2024 17:36
@rgmz
Copy link
Contributor Author

rgmz commented Feb 9, 2024

I'm guessing that this should probably wait for #2385 and possibly the resolution to #2371 in order to avoid merge conflicts.

I've moved the wiki logic from repo.go -> github.go to reduce the impact.

Copy link
Collaborator

@mcastorina mcastorina left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for taking this on, it's looking really good!

I'll take another pass once the --repo flag works.

pkg/sources/github/repo.go Outdated Show resolved Hide resolved
pkg/sources/github/repo.go Show resolved Hide resolved
pkg/sources/github/repo.go Outdated Show resolved Hide resolved
pkg/sources/github/github.go Show resolved Hide resolved
pkg/sources/github/github.go Outdated Show resolved Hide resolved
pkg/sources/github/github.go Outdated Show resolved Hide resolved
pkg/sources/github/github.go Outdated Show resolved Hide resolved
pkg/sources/github/github.go Outdated Show resolved Hide resolved
pkg/sources/github/github.go Show resolved Hide resolved
pkg/sources/github/repo.go Show resolved Hide resolved
@rgmz rgmz force-pushed the refactor/github-repoinfo-struct branch 4 times, most recently from 97beae0 to 11d724c Compare February 29, 2024 10:13
@rgmz rgmz force-pushed the refactor/github-repoinfo-struct branch from 11d724c to 15e8389 Compare February 29, 2024 10:14
@bill-rich bill-rich merged commit 80e8a67 into trufflesecurity:main Mar 21, 2024
8 of 9 checks passed
@rgmz rgmz deleted the refactor/github-repoinfo-struct branch March 22, 2024 12:09
haraldh referenced this pull request in matter-labs/vault-auth-tee Mar 27, 2024
[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
|
[trufflesecurity/trufflehog](https://togithub.com/trufflesecurity/trufflehog)
| action | minor | `v3.69.0` -> `v3.71.1` |

---

### Release Notes

<details>
<summary>trufflesecurity/trufflehog
(trufflesecurity/trufflehog)</summary>

###
[`v3.71.1`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.71.1)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.71.0...v3.71.1)

#### What's Changed

- Fix GitHub panic and test errors by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2608](https://togithub.com/trufflesecurity/trufflehog/pull/2608)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.101.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2617](https://togithub.com/trufflesecurity/trufflehog/pull/2617)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.6 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2615](https://togithub.com/trufflesecurity/trufflehog/pull/2615)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.7 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2623](https://togithub.com/trufflesecurity/trufflehog/pull/2623)
- Fix additional GitHub test errors by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2614](https://togithub.com/trufflesecurity/trufflehog/pull/2614)
- \[chore] - upgrade dep by [@&#8203;ahrav](https://togithub.com/ahrav)
in
[https://github.com/trufflesecurity/trufflehog/pull/2618](https://togithub.com/trufflesecurity/trufflehog/pull/2618)
- fix(deps): update golang.org/x/exp digest to
[`a685a6e`](https://togithub.com/trufflesecurity/trufflehog/commit/a685a6e)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2621](https://togithub.com/trufflesecurity/trufflehog/pull/2621)
- Fix incorrect regular expression with missing closing bracket by
[@&#8203;fml09](https://togithub.com/fml09) in
[https://github.com/trufflesecurity/trufflehog/pull/2616](https://togithub.com/trufflesecurity/trufflehog/pull/2616)
- fix(deps): update module github.com/go-sql-driver/mysql to v1.8.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2626](https://togithub.com/trufflesecurity/trufflehog/pull/2626)
- fix(deps): update module github.com/charmbracelet/glamour to v0.7.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2627](https://togithub.com/trufflesecurity/trufflehog/pull/2627)
- \[bugfix] - Update the Anthropic detector by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2629](https://togithub.com/trufflesecurity/trufflehog/pull/2629)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.8 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2630](https://togithub.com/trufflesecurity/trufflehog/pull/2630)
- Use Lstat to identify non-regular files in filesystem source by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2628](https://togithub.com/trufflesecurity/trufflehog/pull/2628)

#### New Contributors

- [@&#8203;fml09](https://togithub.com/fml09) made their first
contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2616](https://togithub.com/trufflesecurity/trufflehog/pull/2616)

**Full Changelog**:
trufflesecurity/trufflehog@v3.71.0...v3.71.1

###
[`v3.71.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.71.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.3...v3.71.0)

#### What's Changed

- Postman Source by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2579](https://togithub.com/trufflesecurity/trufflehog/pull/2579)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.4 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2604](https://togithub.com/trufflesecurity/trufflehog/pull/2604)
- expand keyword checks, and add collection name to keyword by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2602](https://togithub.com/trufflesecurity/trufflehog/pull/2602)
- \[chore] Fix potential resource leak in postman source by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2606](https://togithub.com/trufflesecurity/trufflehog/pull/2606)
- Bump github.com/docker/docker from 25.0.3+incompatible to
25.0.5+incompatible by
[@&#8203;dependabot](https://togithub.com/dependabot) in
[https://github.com/trufflesecurity/trufflehog/pull/2603](https://togithub.com/trufflesecurity/trufflehog/pull/2603)
- Refactor GitHub source by [@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2379](https://togithub.com/trufflesecurity/trufflehog/pull/2379)
- Use go 1.22 by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2599](https://togithub.com/trufflesecurity/trufflehog/pull/2599)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v7 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2590](https://togithub.com/trufflesecurity/trufflehog/pull/2590)
- fix(deps): update module github.com/brianvoe/gofakeit/v6 to v7 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2524](https://togithub.com/trufflesecurity/trufflehog/pull/2524)
- fix(deps): update module google.golang.org/api to v0.171.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2611](https://togithub.com/trufflesecurity/trufflehog/pull/2611)
- fix(deps): update module github.com/bradleyfalzon/ghinstallation/v2 to
v2.10.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2607](https://togithub.com/trufflesecurity/trufflehog/pull/2607)
- Avoid uneeded calls to strconv.Unquote by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2605](https://togithub.com/trufflesecurity/trufflehog/pull/2605)
- MaxMind detector uses the right endpoint by
[@&#8203;faktas2](https://togithub.com/faktas2) in
[https://github.com/trufflesecurity/trufflehog/pull/2577](https://togithub.com/trufflesecurity/trufflehog/pull/2577)
- Update Snyk detector by [@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2559](https://togithub.com/trufflesecurity/trufflehog/pull/2559)
- fix(deps): update module github.com/brianvoe/gofakeit/v6 to v7 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2612](https://togithub.com/trufflesecurity/trufflehog/pull/2612)
- Dockerhub v2 detector by
[@&#8203;ankushgoel27](https://togithub.com/ankushgoel27) in
[https://github.com/trufflesecurity/trufflehog/pull/2361](https://togithub.com/trufflesecurity/trufflehog/pull/2361)

**Full Changelog**:
trufflesecurity/trufflehog@v3.70.3...v3.71.0

###
[`v3.70.3`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.3)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.2...v3.70.3)

#### What's Changed

- \[chore] Replace "Trufflehog" with "TruffleHog" by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2584](https://togithub.com/trufflesecurity/trufflehog/pull/2584)
- fix(deps): update golang.org/x/exp digest to
[`a85f2c6`](https://togithub.com/trufflesecurity/trufflehog/commit/a85f2c6)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2592](https://togithub.com/trufflesecurity/trufflehog/pull/2592)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2593](https://togithub.com/trufflesecurity/trufflehog/pull/2593)
- Make Git work with escaped unicode characcters by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2585](https://togithub.com/trufflesecurity/trufflehog/pull/2585)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2594](https://togithub.com/trufflesecurity/trufflehog/pull/2594)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.12.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2595](https://togithub.com/trufflesecurity/trufflehog/pull/2595)
- fix(deps): update module github.com/wasilibs/go-re2 to v1.5.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2596](https://togithub.com/trufflesecurity/trufflehog/pull/2596)

**Full Changelog**:
trufflesecurity/trufflehog@v3.70.2...v3.70.3

###
[`v3.70.2`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.2)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.1...v3.70.2)

#### What's Changed

- fix(deps): update module github.com/launchdarkly/go-server-sdk/v7 to
v7.1.1 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2576](https://togithub.com/trufflesecurity/trufflehog/pull/2576)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.11.6
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2578](https://togithub.com/trufflesecurity/trufflehog/pull/2578)
- fix(deps): update module github.com/google/go-containerregistry to
v0.19.1 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2586](https://togithub.com/trufflesecurity/trufflehog/pull/2586)
- fix(deps): update module github.com/googleapis/gax-go/v2 to v2.12.3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2587](https://togithub.com/trufflesecurity/trufflehog/pull/2587)
- fix(deps): update module google.golang.org/api to v0.170.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2589](https://togithub.com/trufflesecurity/trufflehog/pull/2589)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2588](https://togithub.com/trufflesecurity/trufflehog/pull/2588)
- fix(deps): update module github.com/wasilibs/go-re2 to v1.5.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2591](https://togithub.com/trufflesecurity/trufflehog/pull/2591)

**Full Changelog**:
trufflesecurity/trufflehog@v3.70.1...v3.70.2

###
[`v3.70.1`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.1)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.0...v3.70.1)

#### What's Changed

- pull out verification logic from github detectors by
[@&#8203;0x1](https://togithub.com/0x1) in
[https://github.com/trufflesecurity/trufflehog/pull/2554](https://togithub.com/trufflesecurity/trufflehog/pull/2554)
- Fix --results not behaving as expected. by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2582](https://togithub.com/trufflesecurity/trufflehog/pull/2582)
- Fix GitHub detector npe by [@&#8203;rgmz](https://togithub.com/rgmz)
in
[https://github.com/trufflesecurity/trufflehog/pull/2583](https://togithub.com/trufflesecurity/trufflehog/pull/2583)

**Full Changelog**:
trufflesecurity/trufflehog@v3.70.0...v3.70.1

###
[`v3.70.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.69.0...v3.70.0)

#### What's Changed

- fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2550](https://togithub.com/trufflesecurity/trufflehog/pull/2550)
- \[chore] - use custom grow method by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2555](https://togithub.com/trufflesecurity/trufflehog/pull/2555)
- fix(deps): update module github.com/google/go-github/v57 to v60 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2551](https://togithub.com/trufflesecurity/trufflehog/pull/2551)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.35 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2560](https://togithub.com/trufflesecurity/trufflehog/pull/2560)
- fix(deps): update module github.com/go-sql-driver/mysql to v1.8.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2561](https://togithub.com/trufflesecurity/trufflehog/pull/2561)
- fix(deps): update module cloud.google.com/go/storage to v1.39.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2565](https://togithub.com/trufflesecurity/trufflehog/pull/2565)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.36 -
autoclosed by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2566](https://togithub.com/trufflesecurity/trufflehog/pull/2566)
- \[chore] - Fix flaky test by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2564](https://togithub.com/trufflesecurity/trufflehog/pull/2564)
- \[chore] - Record metrics before reset by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2556](https://togithub.com/trufflesecurity/trufflehog/pull/2556)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v7 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2568](https://togithub.com/trufflesecurity/trufflehog/pull/2568)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.100.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2567](https://togithub.com/trufflesecurity/trufflehog/pull/2567)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.38 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2572](https://togithub.com/trufflesecurity/trufflehog/pull/2572)
- fix(deps): update module github.com/couchbase/gocb/v2 to v2.8.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2573](https://togithub.com/trufflesecurity/trufflehog/pull/2573)
- fix(deps): update golang.org/x/exp digest to
[`c7f7c64`](https://togithub.com/trufflesecurity/trufflehog/commit/c7f7c64)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2575](https://togithub.com/trufflesecurity/trufflehog/pull/2575)
- Add `--results` flag by [@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2372](https://togithub.com/trufflesecurity/trufflehog/pull/2372)

**Full Changelog**:
trufflesecurity/trufflehog@v3.69.0...v3.70.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/matter-labs/vault-auth-tee).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4yNDUuMCIsInVwZGF0ZWRJblZlciI6IjM3LjI2OS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->
@joeleonjr joeleonjr mentioned this pull request Mar 28, 2024
rosecodym pushed a commit that referenced this pull request Mar 29, 2024
This is a follow-up to #2379.

It fixes the following issues:

GitHub API calls missing rate-limit handling
The fix for Refactor GitHub source #2379 (comment) inadvertently resulting in duplicate API calls
@rosecodym
Copy link
Collaborator

@rgmz we've traced a number of regressions to this PR, not all of which we've fully resolved yet, and we're considering just rolling it back and re-doing it as multiple separate changes instead. Do you think there would be any unexpected negative consequences to doing this? The description doesn't read like it has anything world-saving in it, but I don't want to miss anything.

@rgmz
Copy link
Contributor Author

rgmz commented Apr 2, 2024

Apologies, the GitHub source logic is perhaps more of a complex beast than I realized. I recently tried to unify the enumerate logic to fix behavioural inconsistencies between auth types (e.g., unauthenticated scans users passed to --org, but the other methods don't seem to.)

@rgmz we've traced a number of regressions to this PR, not all of which we've fully resolved yet, and we're considering just rolling it back and re-doing it as multiple separate changes instead. Do you think there would be any unexpected negative consequences to doing this? The description doesn't read like it has anything world-saving in it, but I don't want to miss anything.

I'm not sure. Reverting this would likely also require reverting or fixing up a few other changes.

Most of this (063b44b) would be difficult to break into smaller changes, as structural changes like adding s.repoInfoCache to reduce duplicated API calls necessitates moving a lot around. Plus, I suspect that some of the issues, such as #2625 (comment), are not net-new bugs but rather surfacing of latent ones.

I'm happy to continue to help diagnose and push fixes, but it's your call.

antonbaliasnikov referenced this pull request in matter-labs/compiler-infra Apr 3, 2024
[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
|
[trufflesecurity/trufflehog](https://togithub.com/trufflesecurity/trufflehog)
| action | minor | `v3.66.1` -> `v3.72.0` |

---

### Release Notes

<details>
<summary>trufflesecurity/trufflehog
(trufflesecurity/trufflehog)</summary>

###
[`v3.72.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.72.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.71.2...v3.72.0)

#### What's Changed

- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.10 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2636](https://togithub.com/trufflesecurity/trufflehog/pull/2636)
- Fix 'toolchair not available' error by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2642](https://togithub.com/trufflesecurity/trufflehog/pull/2642)
- Fix GitHub enumeration & rate-limiting logic by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2625](https://togithub.com/trufflesecurity/trufflehog/pull/2625)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v6.2.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2638](https://togithub.com/trufflesecurity/trufflehog/pull/2638)
- fix(deps): update module cloud.google.com/go/storage to v1.40.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2645](https://togithub.com/trufflesecurity/trufflehog/pull/2645)
- Add JupiterOne detector by
[@&#8203;shreyas-sriram](https://togithub.com/shreyas-sriram) in
[https://github.com/trufflesecurity/trufflehog/pull/2446](https://togithub.com/trufflesecurity/trufflehog/pull/2446)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.11 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2646](https://togithub.com/trufflesecurity/trufflehog/pull/2646)
- fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2648](https://togithub.com/trufflesecurity/trufflehog/pull/2648)
- fix(deps): update module github.com/go-git/go-git/v5 to v5.12.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2649](https://togithub.com/trufflesecurity/trufflehog/pull/2649)
- add GCP application default credentials detector by
[@&#8203;kenzht](https://togithub.com/kenzht) in
[https://github.com/trufflesecurity/trufflehog/pull/2530](https://togithub.com/trufflesecurity/trufflehog/pull/2530)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.12 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2651](https://togithub.com/trufflesecurity/trufflehog/pull/2651)
- Add GitLab CI Pipeline Example in Documentation by
[@&#8203;RoseSecurity](https://togithub.com/RoseSecurity) in
[https://github.com/trufflesecurity/trufflehog/pull/2601](https://togithub.com/trufflesecurity/trufflehog/pull/2601)
- fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.1
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2654](https://togithub.com/trufflesecurity/trufflehog/pull/2654)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.13 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2655](https://togithub.com/trufflesecurity/trufflehog/pull/2655)
- Remove duplicate JiraToken.v2 declaration in `defaults.go` by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2657](https://togithub.com/trufflesecurity/trufflehog/pull/2657)

#### New Contributors

- [@&#8203;kenzht](https://togithub.com/kenzht) made their first
contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2530](https://togithub.com/trufflesecurity/trufflehog/pull/2530)
- [@&#8203;RoseSecurity](https://togithub.com/RoseSecurity) made their
first contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2601](https://togithub.com/trufflesecurity/trufflehog/pull/2601)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.71.2...v3.72.0

###
[`v3.71.2`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.71.2)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.71.1...v3.71.2)

#### What's Changed

- Link to GitHub contribution guide in CONTRIBUTING by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/2632](https://togithub.com/trufflesecurity/trufflehog/pull/2632)
- Fixing nitro check by
[@&#8203;dylanTruffle](https://togithub.com/dylanTruffle) in
[https://github.com/trufflesecurity/trufflehog/pull/2631](https://togithub.com/trufflesecurity/trufflehog/pull/2631)
- fix(deps): update module google.golang.org/api to v0.172.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2634](https://togithub.com/trufflesecurity/trufflehog/pull/2634)
- make postman source public by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2635](https://togithub.com/trufflesecurity/trufflehog/pull/2635)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.71.1...v3.71.2

###
[`v3.71.1`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.71.1)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.71.0...v3.71.1)

#### What's Changed

- Fix GitHub panic and test errors by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2608](https://togithub.com/trufflesecurity/trufflehog/pull/2608)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.101.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2617](https://togithub.com/trufflesecurity/trufflehog/pull/2617)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.6 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2615](https://togithub.com/trufflesecurity/trufflehog/pull/2615)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.7 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2623](https://togithub.com/trufflesecurity/trufflehog/pull/2623)
- Fix additional GitHub test errors by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2614](https://togithub.com/trufflesecurity/trufflehog/pull/2614)
- \[chore] - upgrade dep by [@&#8203;ahrav](https://togithub.com/ahrav)
in
[https://github.com/trufflesecurity/trufflehog/pull/2618](https://togithub.com/trufflesecurity/trufflehog/pull/2618)
- fix(deps): update golang.org/x/exp digest to
[`a685a6e`](https://togithub.com/trufflesecurity/trufflehog/commit/a685a6e)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2621](https://togithub.com/trufflesecurity/trufflehog/pull/2621)
- Fix incorrect regular expression with missing closing bracket by
[@&#8203;fml09](https://togithub.com/fml09) in
[https://github.com/trufflesecurity/trufflehog/pull/2616](https://togithub.com/trufflesecurity/trufflehog/pull/2616)
- fix(deps): update module github.com/go-sql-driver/mysql to v1.8.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2626](https://togithub.com/trufflesecurity/trufflehog/pull/2626)
- fix(deps): update module github.com/charmbracelet/glamour to v0.7.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2627](https://togithub.com/trufflesecurity/trufflehog/pull/2627)
- \[bugfix] - Update the Anthropic detector by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2629](https://togithub.com/trufflesecurity/trufflehog/pull/2629)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.8 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2630](https://togithub.com/trufflesecurity/trufflehog/pull/2630)
- Use Lstat to identify non-regular files in filesystem source by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2628](https://togithub.com/trufflesecurity/trufflehog/pull/2628)

#### New Contributors

- [@&#8203;fml09](https://togithub.com/fml09) made their first
contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2616](https://togithub.com/trufflesecurity/trufflehog/pull/2616)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.71.0...v3.71.1

###
[`v3.71.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.71.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.3...v3.71.0)

#### What's Changed

- Postman Source by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2579](https://togithub.com/trufflesecurity/trufflehog/pull/2579)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.4 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2604](https://togithub.com/trufflesecurity/trufflehog/pull/2604)
- expand keyword checks, and add collection name to keyword by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2602](https://togithub.com/trufflesecurity/trufflehog/pull/2602)
- \[chore] Fix potential resource leak in postman source by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2606](https://togithub.com/trufflesecurity/trufflehog/pull/2606)
- Bump github.com/docker/docker from 25.0.3+incompatible to
25.0.5+incompatible by
[@&#8203;dependabot](https://togithub.com/dependabot) in
[https://github.com/trufflesecurity/trufflehog/pull/2603](https://togithub.com/trufflesecurity/trufflehog/pull/2603)
- Refactor GitHub source by [@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2379](https://togithub.com/trufflesecurity/trufflehog/pull/2379)
- Use go 1.22 by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2599](https://togithub.com/trufflesecurity/trufflehog/pull/2599)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v7 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2590](https://togithub.com/trufflesecurity/trufflehog/pull/2590)
- fix(deps): update module github.com/brianvoe/gofakeit/v6 to v7 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2524](https://togithub.com/trufflesecurity/trufflehog/pull/2524)
- fix(deps): update module google.golang.org/api to v0.171.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2611](https://togithub.com/trufflesecurity/trufflehog/pull/2611)
- fix(deps): update module github.com/bradleyfalzon/ghinstallation/v2 to
v2.10.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2607](https://togithub.com/trufflesecurity/trufflehog/pull/2607)
- Avoid uneeded calls to strconv.Unquote by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2605](https://togithub.com/trufflesecurity/trufflehog/pull/2605)
- MaxMind detector uses the right endpoint by
[@&#8203;faktas2](https://togithub.com/faktas2) in
[https://github.com/trufflesecurity/trufflehog/pull/2577](https://togithub.com/trufflesecurity/trufflehog/pull/2577)
- Update Snyk detector by [@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2559](https://togithub.com/trufflesecurity/trufflehog/pull/2559)
- fix(deps): update module github.com/brianvoe/gofakeit/v6 to v7 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2612](https://togithub.com/trufflesecurity/trufflehog/pull/2612)
- Dockerhub v2 detector by
[@&#8203;ankushgoel27](https://togithub.com/ankushgoel27) in
[https://github.com/trufflesecurity/trufflehog/pull/2361](https://togithub.com/trufflesecurity/trufflehog/pull/2361)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.70.3...v3.71.0

###
[`v3.70.3`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.3)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.2...v3.70.3)

#### What's Changed

- \[chore] Replace "Trufflehog" with "TruffleHog" by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2584](https://togithub.com/trufflesecurity/trufflehog/pull/2584)
- fix(deps): update golang.org/x/exp digest to
[`a85f2c6`](https://togithub.com/trufflesecurity/trufflehog/commit/a85f2c6)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2592](https://togithub.com/trufflesecurity/trufflehog/pull/2592)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2593](https://togithub.com/trufflesecurity/trufflehog/pull/2593)
- Make Git work with escaped unicode characcters by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2585](https://togithub.com/trufflesecurity/trufflehog/pull/2585)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2594](https://togithub.com/trufflesecurity/trufflehog/pull/2594)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.12.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2595](https://togithub.com/trufflesecurity/trufflehog/pull/2595)
- fix(deps): update module github.com/wasilibs/go-re2 to v1.5.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2596](https://togithub.com/trufflesecurity/trufflehog/pull/2596)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.70.2...v3.70.3

###
[`v3.70.2`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.2)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.1...v3.70.2)

#### What's Changed

- fix(deps): update module github.com/launchdarkly/go-server-sdk/v7 to
v7.1.1 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2576](https://togithub.com/trufflesecurity/trufflehog/pull/2576)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.11.6
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2578](https://togithub.com/trufflesecurity/trufflehog/pull/2578)
- fix(deps): update module github.com/google/go-containerregistry to
v0.19.1 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2586](https://togithub.com/trufflesecurity/trufflehog/pull/2586)
- fix(deps): update module github.com/googleapis/gax-go/v2 to v2.12.3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2587](https://togithub.com/trufflesecurity/trufflehog/pull/2587)
- fix(deps): update module google.golang.org/api to v0.170.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2589](https://togithub.com/trufflesecurity/trufflehog/pull/2589)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.51.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2588](https://togithub.com/trufflesecurity/trufflehog/pull/2588)
- fix(deps): update module github.com/wasilibs/go-re2 to v1.5.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2591](https://togithub.com/trufflesecurity/trufflehog/pull/2591)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.70.1...v3.70.2

###
[`v3.70.1`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.1)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.70.0...v3.70.1)

#### What's Changed

- pull out verification logic from github detectors by
[@&#8203;0x1](https://togithub.com/0x1) in
[https://github.com/trufflesecurity/trufflehog/pull/2554](https://togithub.com/trufflesecurity/trufflehog/pull/2554)
- Fix --results not behaving as expected. by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2582](https://togithub.com/trufflesecurity/trufflehog/pull/2582)
- Fix GitHub detector npe by [@&#8203;rgmz](https://togithub.com/rgmz)
in
[https://github.com/trufflesecurity/trufflehog/pull/2583](https://togithub.com/trufflesecurity/trufflehog/pull/2583)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.70.0...v3.70.1

###
[`v3.70.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.70.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.69.0...v3.70.0)

#### What's Changed

- fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2550](https://togithub.com/trufflesecurity/trufflehog/pull/2550)
- \[chore] - use custom grow method by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2555](https://togithub.com/trufflesecurity/trufflehog/pull/2555)
- fix(deps): update module github.com/google/go-github/v57 to v60 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2551](https://togithub.com/trufflesecurity/trufflehog/pull/2551)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.35 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2560](https://togithub.com/trufflesecurity/trufflehog/pull/2560)
- fix(deps): update module github.com/go-sql-driver/mysql to v1.8.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2561](https://togithub.com/trufflesecurity/trufflehog/pull/2561)
- fix(deps): update module cloud.google.com/go/storage to v1.39.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2565](https://togithub.com/trufflesecurity/trufflehog/pull/2565)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.36 -
autoclosed by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2566](https://togithub.com/trufflesecurity/trufflehog/pull/2566)
- \[chore] - Fix flaky test by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2564](https://togithub.com/trufflesecurity/trufflehog/pull/2564)
- \[chore] - Record metrics before reset by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2556](https://togithub.com/trufflesecurity/trufflehog/pull/2556)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v7 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2568](https://togithub.com/trufflesecurity/trufflehog/pull/2568)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.100.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2567](https://togithub.com/trufflesecurity/trufflehog/pull/2567)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.38 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2572](https://togithub.com/trufflesecurity/trufflehog/pull/2572)
- fix(deps): update module github.com/couchbase/gocb/v2 to v2.8.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2573](https://togithub.com/trufflesecurity/trufflehog/pull/2573)
- fix(deps): update golang.org/x/exp digest to
[`c7f7c64`](https://togithub.com/trufflesecurity/trufflehog/commit/c7f7c64)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2575](https://togithub.com/trufflesecurity/trufflehog/pull/2575)
- Add `--results` flag by [@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2372](https://togithub.com/trufflesecurity/trufflehog/pull/2372)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.69.0...v3.70.0

###
[`v3.69.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.69.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.68.5...v3.69.0)

#### What's Changed

- add version to extra data + moving existing versioned detectors into
subdirectory format by [@&#8203;0x1](https://togithub.com/0x1) in
[https://github.com/trufflesecurity/trufflehog/pull/2471](https://togithub.com/trufflesecurity/trufflehog/pull/2471)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v7 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2499](https://togithub.com/trufflesecurity/trufflehog/pull/2499)
- fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2535](https://togithub.com/trufflesecurity/trufflehog/pull/2535)
- fix(deps): update module github.com/charmbracelet/lipgloss to v0.10.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2542](https://togithub.com/trufflesecurity/trufflehog/pull/2542)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.34 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2541](https://togithub.com/trufflesecurity/trufflehog/pull/2541)
- fix(deps): update module golang.org/x/crypto to v0.21.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2544](https://togithub.com/trufflesecurity/trufflehog/pull/2544)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.99.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2543](https://togithub.com/trufflesecurity/trufflehog/pull/2543)
- fix(deps): update module golang.org/x/oauth2 to v0.18.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2546](https://togithub.com/trufflesecurity/trufflehog/pull/2546)
- fix(deps): update module google.golang.org/api to v0.169.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2547](https://togithub.com/trufflesecurity/trufflehog/pull/2547)
- Canary verification by
[@&#8203;joeleonjr](https://togithub.com/joeleonjr) in
[https://github.com/trufflesecurity/trufflehog/pull/2531](https://togithub.com/trufflesecurity/trufflehog/pull/2531)
- fix(deps): update testcontainers-go monorepo to v0.29.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2549](https://togithub.com/trufflesecurity/trufflehog/pull/2549)
- fix(deps): update module google.golang.org/protobuf to v1.33.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2548](https://togithub.com/trufflesecurity/trufflehog/pull/2548)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.68.5...v3.69.0

###
[`v3.68.5`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.68.5)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.68.4...v3.68.5)

#### What's Changed

- Create basic escaped unicode decoder by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2456](https://togithub.com/trufflesecurity/trufflehog/pull/2456)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.30 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2529](https://togithub.com/trufflesecurity/trufflehog/pull/2529)
- fix(deps): update module github.com/felixge/fgprof to v0.9.4 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2532](https://togithub.com/trufflesecurity/trufflehog/pull/2532)
- fix(deps): update module cloud.google.com/go/storage to v1.39.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2533](https://togithub.com/trufflesecurity/trufflehog/pull/2533)
- fix(deps): update module github.com/stretchr/testify to v1.9.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2534](https://togithub.com/trufflesecurity/trufflehog/pull/2534)
- Add naive S3 ignorelist by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/2536](https://togithub.com/trufflesecurity/trufflehog/pull/2536)
- Redact secret in git command output by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/2539](https://togithub.com/trufflesecurity/trufflehog/pull/2539)
- Fix timeout param, DB is not needed for ping command by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2540](https://togithub.com/trufflesecurity/trufflehog/pull/2540)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.68.4...v3.68.5

###
[`v3.68.4`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.68.4)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.68.3...v3.68.4)

#### What's Changed

- Improve Gitlab default URL handling by
[@&#8203;trufflesteeeve](https://togithub.com/trufflesteeeve) in
[https://github.com/trufflesecurity/trufflehog/pull/2491](https://togithub.com/trufflesecurity/trufflehog/pull/2491)
- fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2513](https://togithub.com/trufflesecurity/trufflehog/pull/2513)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.28 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2520](https://togithub.com/trufflesecurity/trufflehog/pull/2520)
- fix(deps): update module github.com/googleapis/gax-go/v2 to v2.12.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2521](https://togithub.com/trufflesecurity/trufflehog/pull/2521)
- fix(deps): update module github.com/prometheus/client_golang to
v1.19.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2522](https://togithub.com/trufflesecurity/trufflehog/pull/2522)
- fix(deps): update module golang.org/x/crypto to v0.20.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2523](https://togithub.com/trufflesecurity/trufflehog/pull/2523)
- Remove one filter word by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2525](https://togithub.com/trufflesecurity/trufflehog/pull/2525)
- Fix minor typo by [@&#8203;jamesgol](https://togithub.com/jamesgol) in
[https://github.com/trufflesecurity/trufflehog/pull/2527](https://togithub.com/trufflesecurity/trufflehog/pull/2527)
- Ignore canary IDs in notifications by
[@&#8203;dxa4481](https://togithub.com/dxa4481) in
[https://github.com/trufflesecurity/trufflehog/pull/2526](https://togithub.com/trufflesecurity/trufflehog/pull/2526)
- \[feat] - Make the client configurable by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2528](https://togithub.com/trufflesecurity/trufflehog/pull/2528)

#### New Contributors

- [@&#8203;jamesgol](https://togithub.com/jamesgol) made their first
contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2527](https://togithub.com/trufflesecurity/trufflehog/pull/2527)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.68.3...v3.68.4

###
[`v3.68.3`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.68.3)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.68.2...v3.68.3)

#### What's Changed

- fix(deps): update module github.com/google/go-github/v57 to v59 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2464](https://togithub.com/trufflesecurity/trufflehog/pull/2464)
- fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2455](https://togithub.com/trufflesecurity/trufflehog/pull/2455)
- fix(deps): update golang.org/x/exp digest to
[`814bf88`](https://togithub.com/trufflesecurity/trufflehog/commit/814bf88)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2508](https://togithub.com/trufflesecurity/trufflehog/pull/2508)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.25 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2509](https://togithub.com/trufflesecurity/trufflehog/pull/2509)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.98.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2511](https://togithub.com/trufflesecurity/trufflehog/pull/2511)
- fix(deps): update module google.golang.org/api to v0.167.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2512](https://togithub.com/trufflesecurity/trufflehog/pull/2512)
- Improve monogo and snowflake detectors by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2518](https://togithub.com/trufflesecurity/trufflehog/pull/2518)
- JDBC test and parsing improvements by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2516](https://togithub.com/trufflesecurity/trufflehog/pull/2516)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.68.2...v3.68.3

###
[`v3.68.2`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.68.2)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.68.1...v3.68.2)

#### What's Changed

- fix prefix check when returning early by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2503](https://togithub.com/trufflesecurity/trufflehog/pull/2503)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.68.1...v3.68.2

###
[`v3.68.1`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.68.1)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.68.0...v3.68.1)

#### What's Changed

- Tell git to ignore directory ownership (fixes
[#&#8203;2495](https://togithub.com/trufflesecurity/trufflehog/issues/2495))
by [@&#8203;marksteward](https://togithub.com/marksteward) in
[https://github.com/trufflesecurity/trufflehog/pull/2496](https://togithub.com/trufflesecurity/trufflehog/pull/2496)
- Gitlab scan targets by [@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2470](https://togithub.com/trufflesecurity/trufflehog/pull/2470)
- Clean up some detectors by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2501](https://togithub.com/trufflesecurity/trufflehog/pull/2501)

#### New Contributors

- [@&#8203;marksteward](https://togithub.com/marksteward) made their
first contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2496](https://togithub.com/trufflesecurity/trufflehog/pull/2496)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.68.0...v3.68.1

###
[`v3.68.0`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.68.0)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.7...v3.68.0)

#### What's Changed

- fix(deps): update module github.com/hashicorp/golang-lru to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2486](https://togithub.com/trufflesecurity/trufflehog/pull/2486)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.21 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2489](https://togithub.com/trufflesecurity/trufflehog/pull/2489)
- Add Display method to SourceUnit and Kind member to the
CommonSourceUnit by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2450](https://togithub.com/trufflesecurity/trufflehog/pull/2450)
- fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to
v7 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2490](https://togithub.com/trufflesecurity/trufflehog/pull/2490)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.22 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2492](https://togithub.com/trufflesecurity/trufflehog/pull/2492)
- fix(deps): update module github.com/couchbase/gocb/v2 to v2.7.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2493](https://togithub.com/trufflesecurity/trufflehog/pull/2493)
- fix(deps): update module github.com/snowflakedb/gosnowflake to v1.8.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2497](https://togithub.com/trufflesecurity/trufflehog/pull/2497)
- fix(deps): update module go.uber.org/zap to v1.27.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2498](https://togithub.com/trufflesecurity/trufflehog/pull/2498)
- Identify some canary tokens without detonation by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2500](https://togithub.com/trufflesecurity/trufflehog/pull/2500)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.67.7...v3.68.0

###
[`v3.67.7`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.67.7)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.6...v3.67.7)

#### What's Changed

- \[chore] Add some doc comments to source manager by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2434](https://togithub.com/trufflesecurity/trufflehog/pull/2434)
- fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2448](https://togithub.com/trufflesecurity/trufflehog/pull/2448)
- fix(deps): update golang.org/x/exp digest to
[`ec58324`](https://togithub.com/trufflesecurity/trufflehog/commit/ec58324)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2452](https://togithub.com/trufflesecurity/trufflehog/pull/2452)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.17 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2453](https://togithub.com/trufflesecurity/trufflehog/pull/2453)
- fix(deps): update module github.com/googleapis/gax-go/v2 to v2.12.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2454](https://togithub.com/trufflesecurity/trufflehog/pull/2454)
- fix(deps): update module github.com/aymanbagabas/go-osc52 to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2447](https://togithub.com/trufflesecurity/trufflehog/pull/2447)
- fix(deps): update module github.com/aymanbagabas/go-osc52 to v1.2.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2457](https://togithub.com/trufflesecurity/trufflehog/pull/2457)
- fix(deps): update module go.mongodb.org/mongo-driver to v1.13.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2458](https://togithub.com/trufflesecurity/trufflehog/pull/2458)
- fix(deps): update module github.com/aymanbagabas/go-osc52 to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2459](https://togithub.com/trufflesecurity/trufflehog/pull/2459)
- fix(deps): update module github.com/aymanbagabas/go-osc52 to v1.2.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2460](https://togithub.com/trufflesecurity/trufflehog/pull/2460)
- fix(deps): update module github.com/google/go-github/v57 to v59 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2449](https://togithub.com/trufflesecurity/trufflehog/pull/2449)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.18 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2463](https://togithub.com/trufflesecurity/trufflehog/pull/2463)
- Remove some noisy / less useful detectors by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2467](https://togithub.com/trufflesecurity/trufflehog/pull/2467)
- add missing prefixregex to GuardianAPI by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2468](https://togithub.com/trufflesecurity/trufflehog/pull/2468)
- update gitlab proto by [@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2469](https://togithub.com/trufflesecurity/trufflehog/pull/2469)
- \[cleanup] - Extract buffer logic by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2409](https://togithub.com/trufflesecurity/trufflehog/pull/2409)
- add lazy quantifier to prefixregex by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2466](https://togithub.com/trufflesecurity/trufflehog/pull/2466)
- \[chore] Increase TestMaxDiffSize timeout by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2472](https://togithub.com/trufflesecurity/trufflehog/pull/2472)
- \[chore] - tighten keyword match by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2473](https://togithub.com/trufflesecurity/trufflehog/pull/2473)
- move clenaup outside the engine by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2475](https://togithub.com/trufflesecurity/trufflehog/pull/2475)
- fix(deps): update module github.com/hashicorp/golang-lru to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2462](https://togithub.com/trufflesecurity/trufflehog/pull/2462)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.20 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2477](https://togithub.com/trufflesecurity/trufflehog/pull/2477)
- fix(deps): update module github.com/hashicorp/golang-lru to v0.6.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2478](https://togithub.com/trufflesecurity/trufflehog/pull/2478)
- fix(deps): update module go.mongodb.org/mongo-driver to v1.14.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2479](https://togithub.com/trufflesecurity/trufflehog/pull/2479)
- fix(deps): update module google.golang.org/api to v0.165.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2480](https://togithub.com/trufflesecurity/trufflehog/pull/2480)
- fix(deps): update module github.com/hashicorp/golang-lru to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2481](https://togithub.com/trufflesecurity/trufflehog/pull/2481)
- fix(deps): update module github.com/hashicorp/golang-lru to v0.6.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2482](https://togithub.com/trufflesecurity/trufflehog/pull/2482)
- fix(deps): update module github.com/hashicorp/golang-lru to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2483](https://togithub.com/trufflesecurity/trufflehog/pull/2483)
- fix(deps): update module
github.com/azuread/microsoft-authentication-library-for-go to v1.2.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2484](https://togithub.com/trufflesecurity/trufflehog/pull/2484)
- \[chore] - upgrade lru cache version by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2487](https://togithub.com/trufflesecurity/trufflehog/pull/2487)
- \[chore] - use read full by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2474](https://togithub.com/trufflesecurity/trufflehog/pull/2474)
- concurrency uint8 to int by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2488](https://togithub.com/trufflesecurity/trufflehog/pull/2488)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.67.6...v3.67.7

###
[`v3.67.6`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.67.6)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.5...v3.67.6)

#### What's Changed

- Disable secret scans for community PRs by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2401](https://togithub.com/trufflesecurity/trufflehog/pull/2401)
- Refactor UnitHook to block the scan if finished metrics aren't handled
by [@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2309](https://togithub.com/trufflesecurity/trufflehog/pull/2309)
- Update brew install instructions by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2404](https://togithub.com/trufflesecurity/trufflehog/pull/2404)
- Implement SourceUnitEnumChunker for GitLab by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2367](https://togithub.com/trufflesecurity/trufflehog/pull/2367)
- Add flag to write job reports to disk by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2298](https://togithub.com/trufflesecurity/trufflehog/pull/2298)
- \[chore] Rename file to legacy_reporters.go by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2406](https://togithub.com/trufflesecurity/trufflehog/pull/2406)
- \[chore] Ensure Postgres detector respects context deadline by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2408](https://togithub.com/trufflesecurity/trufflehog/pull/2408)
- fix(deps): update module github.com/charmbracelet/bubbletea to v0.25.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2326](https://togithub.com/trufflesecurity/trufflehog/pull/2326)
- fix(deps): update module github.com/charmbracelet/bubbles to v0.18.0
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2296](https://togithub.com/trufflesecurity/trufflehog/pull/2296)
- fix(deps): update module github.com/aymanbagabas/go-osc52 to v2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2048](https://togithub.com/trufflesecurity/trufflehog/pull/2048)
- fix(deps): update github.com/lrstanley/bubblezone digest to
[`b7bafc4`](https://togithub.com/trufflesecurity/trufflehog/commit/b7bafc4)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2411](https://togithub.com/trufflesecurity/trufflehog/pull/2411)
- fix(deps): update golang.org/x/exp digest to
[`2c58cdc`](https://togithub.com/trufflesecurity/trufflehog/commit/2c58cdc)
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2412](https://togithub.com/trufflesecurity/trufflehog/pull/2412)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.11.5
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2414](https://togithub.com/trufflesecurity/trufflehog/pull/2414)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.15 -
autoclosed by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2415](https://togithub.com/trufflesecurity/trufflehog/pull/2415)
- fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.22 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2417](https://togithub.com/trufflesecurity/trufflehog/pull/2417)
- fix(deps): update module github.com/aymanbagabas/go-osc52 to v1.2.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2416](https://togithub.com/trufflesecurity/trufflehog/pull/2416)
- chore(deps): update golang docker tag to v1.22 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2420](https://togithub.com/trufflesecurity/trufflehog/pull/2420)
- chore(deps): update sigstore/cosign-installer action to v3.4.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2421](https://togithub.com/trufflesecurity/trufflehog/pull/2421)
- fix(deps): update module cloud.google.com/go/storage to v1.37.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2423](https://togithub.com/trufflesecurity/trufflehog/pull/2423)
- fix(deps): update module github.com/getsentry/sentry-go to v0.27.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2424](https://togithub.com/trufflesecurity/trufflehog/pull/2424)
- fix(deps): update module github.com/google/go-containerregistry to
v0.19.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2425](https://togithub.com/trufflesecurity/trufflehog/pull/2425)
- \[fix] Add unit information to error returned by ChunkUnit by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2410](https://togithub.com/trufflesecurity/trufflehog/pull/2410)
- Ignore Kubernetes GCP test credentials by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2413](https://togithub.com/trufflesecurity/trufflehog/pull/2413)
- fix(deps): update module github.com/google/uuid to v1.6.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2427](https://togithub.com/trufflesecurity/trufflehog/pull/2427)
- fix(deps): update module github.com/hashicorp/golang-lru to v0.6.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2428](https://togithub.com/trufflesecurity/trufflehog/pull/2428)
- fix(deps): update module github.com/thezeroslave/zapsentry to v1.20.2
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2431](https://togithub.com/trufflesecurity/trufflehog/pull/2431)
- fix(deps): update module github.com/snowflakedb/gosnowflake to v1.7.2
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2430](https://togithub.com/trufflesecurity/trufflehog/pull/2430)
- fix(deps): update module github.com/prometheus/client_golang to
v1.18.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2429](https://togithub.com/trufflesecurity/trufflehog/pull/2429)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.97.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2432](https://togithub.com/trufflesecurity/trufflehog/pull/2432)
- fix(deps): update module go.mongodb.org/mongo-driver to v1.13.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2433](https://togithub.com/trufflesecurity/trufflehog/pull/2433)
- fix(deps): update module go.uber.org/mock to v0.4.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2437](https://togithub.com/trufflesecurity/trufflehog/pull/2437)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.50.16 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2436](https://togithub.com/trufflesecurity/trufflehog/pull/2436)
- fix(deps): update module cloud.google.com/go/storage to v1.38.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2438](https://togithub.com/trufflesecurity/trufflehog/pull/2438)
- fix(deps): update module golang.org/x/crypto to v0.19.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2439](https://togithub.com/trufflesecurity/trufflehog/pull/2439)
- fix(deps): update module golang.org/x/net to v0.21.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2440](https://togithub.com/trufflesecurity/trufflehog/pull/2440)
- chore(deps): update actions/setup-go action to v5 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2443](https://togithub.com/trufflesecurity/trufflehog/pull/2443)
- fix(deps): update module golang.org/x/oauth2 to v0.17.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2441](https://togithub.com/trufflesecurity/trufflehog/pull/2441)
- fix(deps): update module google.golang.org/api to v0.164.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2442](https://togithub.com/trufflesecurity/trufflehog/pull/2442)
- chore(deps): update github/codeql-action action to v3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2444](https://togithub.com/trufflesecurity/trufflehog/pull/2444)
- chore(deps): update golangci/golangci-lint-action action to v4 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2445](https://togithub.com/trufflesecurity/trufflehog/pull/2445)
- Update custom detector example by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2435](https://togithub.com/trufflesecurity/trufflehog/pull/2435)
- 2396 since commit stopped working by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2402](https://togithub.com/trufflesecurity/trufflehog/pull/2402)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.67.5...v3.67.6

###
[`v3.67.5`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.67.5)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.4...v3.67.5)

#### What's Changed

- Fix handling of GitHub ratelimit information by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2041](https://togithub.com/trufflesecurity/trufflehog/pull/2041)
- Set GHA workdir by
[@&#8203;zricethezav](https://togithub.com/zricethezav) in
[https://github.com/trufflesecurity/trufflehog/pull/2393](https://togithub.com/trufflesecurity/trufflehog/pull/2393)
- Allow CLI version pinning in GHA
([#&#8203;2397](https://togithub.com/trufflesecurity/trufflehog/issues/2397))
by [@&#8203;skeweredlogic](https://togithub.com/skeweredlogic) in
[https://github.com/trufflesecurity/trufflehog/pull/2398](https://togithub.com/trufflesecurity/trufflehog/pull/2398)
- \[bug] - prevent concurrent map writes by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2399](https://togithub.com/trufflesecurity/trufflehog/pull/2399)
- Allow multiple domains for Forager by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/2400](https://togithub.com/trufflesecurity/trufflehog/pull/2400)
- Update GitParse to handle quoted binary filenames by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2391](https://togithub.com/trufflesecurity/trufflehog/pull/2391)
- \[feat] - buffered file writer metrics by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2395](https://togithub.com/trufflesecurity/trufflehog/pull/2395)

#### New Contributors

- [@&#8203;skeweredlogic](https://togithub.com/skeweredlogic) made their
first contribution in
[https://github.com/trufflesecurity/trufflehog/pull/2398](https://togithub.com/trufflesecurity/trufflehog/pull/2398)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.67.4...v3.67.5

###
[`v3.67.4`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.67.4)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.3...v3.67.4)

#### What's Changed

- \[feat] - use diff chan by [@&#8203;ahrav](https://togithub.com/ahrav)
in
[https://github.com/trufflesecurity/trufflehog/pull/2387](https://togithub.com/trufflesecurity/trufflehog/pull/2387)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.67.3...v3.67.4

###
[`v3.67.3`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.67.3)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.2...v3.67.3)

#### What's Changed

- Disable GitHub wiki scanning by default by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/2386](https://togithub.com/trufflesecurity/trufflehog/pull/2386)
- Fix binary file hanging bug in git sources by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/2388](https://togithub.com/trufflesecurity/trufflehog/pull/2388)
- tightening opsgenie detection and verification by
[@&#8203;dylanTruffle](https://togithub.com/dylanTruffle) in
[https://github.com/trufflesecurity/trufflehog/pull/2389](https://togithub.com/trufflesecurity/trufflehog/pull/2389)
- Make `SkipFile` case-insensitive by
[@&#8203;rgmz](https://togithub.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2383](https://togithub.com/trufflesecurity/trufflehog/pull/2383)
- \[not-fixup] - Reduce memory consumption for Buffered File Writer by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2377](https://togithub.com/trufflesecurity/trufflehog/pull/2377)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.67.2...v3.67.3

###
[`v3.67.2`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.67.2)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.67.1...v3.67.2)

#### What's Changed

- \[bug] - unhashable map key by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/2374](https://togithub.com/trufflesecurity/trufflehog/pull/2374)
- custom detector docs improvement by
[@&#8203;dxa4481](https://togithub.com/dxa4481) in
[https://github.com/trufflesecurity/trufflehog/pull/2376](https://togithub.com/tru

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/matter-labs/compiler-infra).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNTMuMiIsInVwZGF0ZWRJblZlciI6IjM3LjI2OS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@rosecodym rosecodym mentioned this pull request Apr 3, 2024
2 tasks
@rgmz
Copy link
Contributor Author

rgmz commented Apr 3, 2024

Do you think there would be any unexpected negative consequences to doing this? The description doesn't read like it has anything world-saving in it, but I don't want to miss anything.

Most of this (063b44b) would be difficult to break into smaller changes, as structural changes like adding s.repoInfoCache to reduce duplicated API calls necessitates moving a lot around.

I may have buried the lede a bit. The primary motivation for this PR was reducing unnecessary API calls; most, but not all, of the subsequent refactoring was a consequence of that.

A negative consequence would quicker exhaustion of the GitHub rate limit.

Remove the unnecessary API request in visibilityOf by storing visibility information during initial enumeration (as mentioned in #2308 (comment)).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

Successfully merging this pull request may close these issues.

4 participants