Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / gitleaks/gitleaks issues and pull requests

#1608 - Tweak rules to reduce false-positives

Pull Request - State: open - Opened by rgmz 3 days ago

#1607 - Fix global ignore for jquery/swagger without version

Pull Request - State: closed - Opened by rgmz 4 days ago

#1606 - Tweak `generic-api-key` to reduce false positives

Pull Request - State: closed - Opened by rgmz 4 days ago - 1 comment

#1605 - Create .gitleaks.toml

Pull Request - State: closed - Opened by zricethezav 5 days ago

#1604 - Add swagger-ui files to global allowlist

Pull Request - State: closed - Opened by rgmz 6 days ago

#1603 - Further improvements to curl rules

Pull Request - State: closed - Opened by rgmz 6 days ago - 1 comment

#1602 - Create Octopus Deploy api key

Pull Request - State: closed - Opened by rgmz 6 days ago

#1601 - Add new jira api token pattern

Pull Request - State: open - Opened by oscarbc96 6 days ago

#1600 - Remove hard-coded 'magic' from the `generic-api-key` rule

Pull Request - State: open - Opened by rgmz 7 days ago - 2 comments

#1599 - Update Okta Access Token Rule

Pull Request - State: closed - Opened by rgmz 7 days ago - 1 comment

#1598 - Detect base64 secrets with generic-api-key

Pull Request - State: open - Opened by rgmz 8 days ago

#1597 - Tweak python paths in global allowlist

Pull Request - State: closed - Opened by rgmz 8 days ago - 1 comment

#1596 - Deduplicate allowlist commits & keywords

Pull Request - State: closed - Opened by rgmz 8 days ago

#1595 - Add jquery dist files to global ignorelist

Pull Request - State: closed - Opened by rgmz 9 days ago

#1594 - Tweak private key regex to reduce false positives

Pull Request - State: open - Opened by rgmz 9 days ago - 4 comments

#1592 - Fix config validate rules when [extend] is used

Pull Request - State: open - Opened by rgmz 10 days ago

#1591 - Log skipped symlinks

Pull Request - State: closed - Opened by rgmz 11 days ago

#1590 - Allowlists not working

Issue - State: closed - Opened by ahoehma 11 days ago - 6 comments
Labels: bug

#1589 - False positives for curl-auth rule if variables are quoted

Issue - State: closed - Opened by very-doge-wow 11 days ago - 1 comment
Labels: bug

#1588 - Request: Normalize build process

Issue - State: open - Opened by mcandre 11 days ago
Labels: enhancement

#1587 - feat(generic-api-key): exclude keywords

Pull Request - State: closed - Opened by Ben-grmbl 11 days ago - 7 comments

#1586 - More rule fixes

Pull Request - State: closed - Opened by rgmz 11 days ago - 1 comment

#1585 - Match left side of identifier

Pull Request - State: closed - Opened by rgmz 11 days ago - 4 comments

#1584 - fix(aws-access-token): only match if correct length

Pull Request - State: closed - Opened by Ben-grmbl 12 days ago

#1583 - Add 1password service token rule

Pull Request - State: closed - Opened by rgmz 12 days ago

#1582 - Add entropy & allowlist to AWS

Pull Request - State: closed - Opened by rgmz 12 days ago - 1 comment

#1581 - Update global allowlist to ignore alpha or numeric sequences

Pull Request - State: open - Opened by rgmz 12 days ago

#1580 - Add entropy to several rules

Pull Request - State: closed - Opened by rgmz 12 days ago - 1 comment

#1579 - Exclude fake keys, e.g. glpat-XXXXXXXXXXX-XXXXXXXX

Issue - State: closed - Opened by Ben-grmbl 13 days ago - 2 comments
Labels: enhancement

#1578 - Improving rule 'generic-api-key' to avoid false positives on e.g. "public_key=", "monkey=", ...

Issue - State: closed - Opened by Ben-grmbl 13 days ago - 3 comments
Labels: enhancement

#1577 - aws-access-token matches anywhere in a long string

Issue - State: closed - Opened by Ben-grmbl 14 days ago - 4 comments
Labels: bug

#1576 - Add rule for curl `Authorization:` header

Pull Request - State: closed - Opened by rgmz 14 days ago

#1575 - Add rule for curl `--user` flag

Pull Request - State: closed - Opened by rgmz 14 days ago - 2 comments

#1574 - Update spelling in README.md

Pull Request - State: closed - Opened by fostermarcp 14 days ago

#1573 - Temporarily switch back to `[rules.allowlist]`

Pull Request - State: closed - Opened by rgmz 15 days ago

#1572 - .gitleaksignore should be treated as untrusted input

Issue - State: open - Opened by joerg1985 16 days ago - 3 comments
Labels: bug

#1571 - 8.21.0, Custom gitleaks.toml Introducing False Positives

Issue - State: closed - Opened by createchange 16 days ago - 9 comments
Labels: bug

#1570 - Gitleaks: version 8.21.0 Failing with Custom gitleaks.toml

Issue - State: closed - Opened by ektosgit 17 days ago - 11 comments
Labels: bug

#1569 - Use iota for Allowlist condition

Pull Request - State: closed - Opened by rgmz 17 days ago

#1568 - Detect Kuberenetes secret secretdata

Pull Request - State: open - Opened by rgmz 17 days ago

#1566 - WIP: use secret hash as fingerprint

Pull Request - State: open - Opened by rgmz 17 days ago

#1565 - Paths and Fingerprints are platform specific and not portable

Issue - State: open - Opened by Okeanos 17 days ago - 4 comments
Labels: bug

#1564 - Support generic-api-key with ternary operator

Issue - State: open - Opened by neurolabs 17 days ago - 1 comment
Labels: enhancement

#1561 - Rate limit reached on app.keygen.sh

Issue - State: closed - Opened by piotrekkr 18 days ago - 11 comments
Labels: bug

#1560 - feat: add new GitLab tokens

Pull Request - State: closed - Opened by bufferoverflow 18 days ago - 4 comments

#1559 - Upgrade gitleaks/go-gitdiff to v0.9.1

Pull Request - State: closed - Opened by rgmz 19 days ago

#1557 - Managing custom config file

Issue - State: open - Opened by cduggn 21 days ago - 6 comments
Labels: enhancement

#1556 - Fix rule extension

Pull Request - State: closed - Opened by 9999years 22 days ago - 2 comments

#1555 - Update base config allowlist

Pull Request - State: closed - Opened by rgmz 22 days ago

#1554 - Does Anybody Have a Custom Config To Detect Azure Entra Client Secrets?

Issue - State: closed - Opened by v1ferrarij 23 days ago - 1 comment
Labels: enhancement

#1553 - Match gitleaks.toml anywhere

Pull Request - State: closed - Opened by rgmz 24 days ago - 2 comments

#1552 - Secrets definition in .gitleaks.toml detected as secrets

Issue - State: closed - Opened by CDM56 24 days ago
Labels: bug

#1551 - Bump golang version to fix docker build

Pull Request - State: closed - Opened by J12934 26 days ago - 1 comment

#1550 - Container / Docker Image Tag Missing for v8.20.0

Issue - State: closed - Opened by J12934 26 days ago - 2 comments
Labels: bug

#1549 - Add Cohere rule

Pull Request - State: closed - Opened by rgmz 27 days ago - 1 comment

#1548 - Add PrivateAI rule

Pull Request - State: closed - Opened by rgmz 27 days ago

#1547 - Add placeholder regexes to global allowlist

Pull Request - State: closed - Opened by rgmz 27 days ago - 2 comments

#1546 - Update global config

Pull Request - State: closed - Opened by rgmz 28 days ago - 1 comment

#1545 - Feat/ViperConfig validation for empty struct

Pull Request - State: open - Opened by recreator66 29 days ago - 3 comments

#1544 - invalid go version '1.22.0': must match format 1.23

Issue - State: open - Opened by djmv about 1 month ago - 4 comments
Labels: bug

#1543 - style: prevent globbing and word splitting

Pull Request - State: open - Opened by vil02 about 1 month ago

#1542 - Scan binary files

Pull Request - State: open - Opened by rgmz about 1 month ago - 1 comment

#1541 - Scan binary files

Issue - State: open - Opened by rgmz about 1 month ago
Labels: enhancement

#1540 - Feat/nuget config password rule

Pull Request - State: closed - Opened by bufferoverflow about 1 month ago - 1 comment

#1539 - Warn when a file cannot be scanned due to Git LFS

Pull Request - State: open - Opened by rgmz about 1 month ago

#1538 - Store `Config` keywords as map

Pull Request - State: closed - Opened by rgmz about 1 month ago - 3 comments

#1537 - feat: bump go to 1.22

Pull Request - State: closed - Opened by bufferoverflow about 1 month ago - 1 comment

#1536 - fix: use regexTarget for extend config

Pull Request - State: closed - Opened by bufferoverflow about 1 month ago - 2 comments

#1535 - Disable inherited rule from extended config

Pull Request - State: open - Opened by rgmz about 1 month ago - 3 comments

#1534 - Ignore leading newlines

Pull Request - State: open - Opened by rgmz about 1 month ago

#1533 - Fix behaviour with --pre-commit and --staged

Pull Request - State: closed - Opened by rgmz about 1 month ago

#1531 - Disable inherited rule from extended config

Issue - State: open - Opened by rgmz about 1 month ago

#1530 - gitleaks command dont have '--log-opts' argument in latest version

Issue - State: closed - Opened by bpoorva about 1 month ago - 3 comments
Labels: bug

#1529 - Revert "remove validate config test temporarily"

Pull Request - State: closed - Opened by rgmz about 1 month ago

#1528 - Create fly.io rule

Pull Request - State: closed - Opened by rgmz about 1 month ago

#1527 - fix: to many false-positive for gltf files, add gltf suffix to allowlist

Pull Request - State: closed - Opened by bufferoverflow about 1 month ago - 1 comment

#1526 - glTF files (image/graphical mesh) produce a lot of false positives

Issue - State: closed - Opened by bufferoverflow about 1 month ago
Labels: bug

#1525 - Scanning for popular password manager export formats

Issue - State: open - Opened by seska451 about 1 month ago - 1 comment
Labels: enhancement

#1524 - Extend allowlist & handle extend when validating

Pull Request - State: closed - Opened by rgmz about 1 month ago - 4 comments

#1523 - Fix config extend validation + allowlist

Issue - State: closed - Opened by rgmz about 1 month ago

#1522 - Gitleaks precommit staged still scans the whole git history

Issue - State: closed - Opened by Malandril about 1 month ago
Labels: bug

#1521 - Add a few more verify rules

Pull Request - State: closed - Opened by rgmz about 1 month ago - 1 comment

#1520 - Tweak Kubernetes pattern to handle Helm variables

Pull Request - State: closed - Opened by rgmz about 1 month ago - 1 comment

#1519 - Verify feature

Pull Request - State: closed - Opened by zricethezav about 1 month ago

#1518 - More logic updates

Pull Request - State: closed - Opened by rgmz about 1 month ago

#1517 - More verify updates

Pull Request - State: closed - Opened by rgmz about 1 month ago - 1 comment

#1516 - Verification logic updates

Pull Request - State: closed - Opened by rgmz about 1 month ago

#1515 - Verify feature

Pull Request - State: closed - Opened by zricethezav about 1 month ago - 7 comments

#1514 - Log allowlist exclusions

Pull Request - State: closed - Opened by rgmz about 1 month ago - 1 comment

#1513 - Additional Kubernetes Secret Detections

Issue - State: open - Opened by rgmz about 1 month ago - 1 comment

#1512 - Log allowlist exclusions at trace level

Issue - State: closed - Opened by rgmz about 1 month ago

#1511 - Possibility to use a custom replacement string

Issue - State: open - Opened by dmitri-seron about 1 month ago - 1 comment
Labels: enhancement

#1510 - Running gitleaks detect with source returns no leaks

Issue - State: closed - Opened by jbyardi about 1 month ago - 4 comments
Labels: bug

#1509 - Disable rule regex & path validation

Pull Request - State: closed - Opened by rgmz about 2 months ago - 1 comment

#1507 - Issue: Failed to Load Config: RuleID Missing (Starting Sept 15th, 2024)

Issue - State: closed - Opened by Raag007 about 2 months ago - 17 comments
Labels: bug