gitleaks/gitleaks issues and pull requests

#1187 - Fix closing file in writeJson and writeSarif

Pull Request - State: closed - Opened by alexandear over 1 year ago - 2 comments

#1186 - Simplify report tests by using T.TempDir

Pull Request - State: closed - Opened by alexandear over 1 year ago - 1 comment

#1184 - add icon for exe

Issue - State: closed - Opened by sergiomarotco over 1 year ago - 2 comments
Labels: enhancement

#1183 - Resolve #1170 - Enable selection of a single rule

Pull Request - State: closed - Opened by mpecan over 1 year ago - 3 comments

#1182 - Feature - Ignore false positives by specifying text to replace before testing line

Issue - State: open - Opened by mcm-ham over 1 year ago - 1 comment
Labels: enhancement

#1180 - CVE-2023-24538 in Golang v1.19

Issue - State: closed - Opened by amrityamrout over 1 year ago - 1 comment
Labels: bug

#1179 - Added option to specify .gitleaksignore path

Pull Request - State: closed - Opened by pacorreia over 1 year ago

#1178 - .gitleaksignore is not considered when scanning individual files

Issue - State: closed - Opened by pacorreia over 1 year ago - 1 comment
Labels: bug

#1177 - Add detection rule for OpenAI tokens

Pull Request - State: closed - Opened by mkthebea over 1 year ago

#1176 - add tags support for csv and sarif formats

Pull Request - State: closed - Opened by eyalatox over 1 year ago - 2 comments

#1173 - OpenAI token

Pull Request - State: closed - Opened by mkthebea over 1 year ago

#1172 - Facing trackeback error. What should fix it ?

Issue - State: closed - Opened by justgu3st over 1 year ago - 1 comment
Labels: bug

#1170 - Ability to run only specific rule(s)

Issue - State: closed - Opened by rgmz over 1 year ago
Labels: enhancement

#1168 - Gitleaks exits non-zero if the git repo is repacked as part of running `gitleaks detect`

Issue - State: open - Opened by nfm over 1 year ago - 1 comment
Labels: bug

#1167 - 🐛 fix(sarif): update report to pass validator

Pull Request - State: closed - Opened by DariuszPorowski over 1 year ago

#1166 - sarif report does not pass schema validation

Issue - State: closed - Opened by DariuszPorowski over 1 year ago
Labels: bug

#1165 - feat(generic api key rule): handle more use cases

Pull Request - State: closed - Opened by burahimu over 1 year ago - 1 comment

#1164 - [extend] with useDefault=true doesn't work; only custom rules are matched

Issue - State: closed - Opened by sbolel over 1 year ago - 2 comments
Labels: bug

#1163 - detect --source folder is not honored as a folder in git mode

Issue - State: open - Opened by sguarin over 1 year ago - 3 comments
Labels: bug

#1162 - Add hash of a secret support

Pull Request - State: open - Opened by mn3m0nic over 1 year ago - 6 comments

#1161 - Update Slack token regexes

Pull Request - State: closed - Opened by rgmz over 1 year ago - 4 comments

#1160 - Add warning for quoted `--log-opts` values

Pull Request - State: closed - Opened by rgmz over 1 year ago - 1 comment

#1159 - chore: update deps to fix solaris #1158

Pull Request - State: closed - Opened by gaige over 1 year ago - 1 comment

#1158 - gitleaks fails to run on Solaris due to old modules

Issue - State: closed - Opened by gaige over 1 year ago
Labels: bug

#1157 - Gitleaks fails to run on ubuntu wsl with UrlError

Issue - State: closed - Opened by bencipher over 1 year ago - 4 comments
Labels: bug

#1156 - Ignore all comits when `.gitleaksignore` fingerprint lacks SHA

Pull Request - State: closed - Opened by rgmz over 1 year ago - 3 comments

#1155 - .gitleaksignore bug

Issue - State: closed - Opened by C1ph3R-s over 1 year ago - 3 comments
Labels: bug

#1154 - Fix G307 warning: Deferring unsafe method "Close" on type "*os.File"

Pull Request - State: closed - Opened by rgmz over 1 year ago - 1 comment

#1153 - Gitleaks scans 0 commits if `log-opts` includes a pathspec

Issue - State: closed - Opened by rgmz over 1 year ago - 3 comments
Labels: bug

#1152 - fix(detect): extract secret from group before checking allowlist

Pull Request - State: closed - Opened by rgmz over 1 year ago - 2 comments

#1151 - Allowlist `regexTarget` checks entire match, not just the secret

Issue - State: closed - Opened by rgmz over 1 year ago
Labels: bug

#1150 - Improve `slack-access-token` pattern.

Issue - State: closed - Opened by rgmz over 1 year ago - 1 comment
Labels: enhancement

#1149 - Improve `sumologic-access-id` pattern

Issue - State: closed - Opened by rgmz over 1 year ago
Labels: enhancement

#1148 - Add detection for OpenAI API keys

Pull Request - State: closed - Opened by Becojo over 1 year ago - 7 comments

#1147 - Detect nuget passwords

Issue - State: open - Opened by lattera over 1 year ago - 1 comment
Labels: enhancement

#1146 - Tagging secrets

Issue - State: closed - Opened by eyalatox over 1 year ago - 1 comment
Labels: enhancement

#1145 - Slice bounds out of range panic in v8.16.2

Issue - State: closed - Opened by agmond over 1 year ago - 2 comments
Labels: bug

#1144 - Make Gitleaks works with bare repositories

Issue - State: closed - Opened by StayPirate over 1 year ago - 2 comments
Labels: enhancement

#1143 - fix(detect): avoid panic with verbose flag

Pull Request - State: closed - Opened by rgmz over 1 year ago - 2 comments

#1142 - Fix typo in README

Pull Request - State: closed - Opened by edwardwang888 over 1 year ago

#1141 - Slice bounds out of range panic error

Issue - State: closed - Opened by Usman2ABN over 1 year ago - 4 comments
Labels: bug

#1140 - Passwords in the code are not detecting using the predefined config file

Issue - State: closed - Opened by priyankavit over 1 year ago - 2 comments
Labels: enhancement

#1137 - Central gitleaks allowlist stopwords is not working as expected

Issue - State: open - Opened by arunanandhan over 1 year ago - 2 comments
Labels: bug

#1136 - No color

Pull Request - State: closed - Opened by zricethezav over 1 year ago

#1135 - safer out of bounds

Pull Request - State: closed - Opened by zricethezav over 1 year ago

#1134 - unable to get result from property file

Issue - State: closed - Opened by ramarro123 over 1 year ago - 1 comment
Labels: bug

#1132 - Slice bounds out of range panic in v8.15.2-v8.16.1

Issue - State: closed - Opened by agmond over 1 year ago - 5 comments
Labels: bug

#1131 - Add Authress access key format

Pull Request - State: closed - Opened by wparad over 1 year ago - 2 comments

#1130 - Update Generic API Key rule to detect secrets with special characters

Pull Request - State: open - Opened by SonaliRathore over 1 year ago - 3 comments

#1129 - branch name of the commits where the secrets detected

Issue - State: closed - Opened by arunanandhan over 1 year ago - 1 comment
Labels: enhancement

#1128 - Secrets still being detected in deletions

Issue - State: open - Opened by ccrofts17 over 1 year ago - 5 comments
Labels: bug

#1127 - Gitleaks 8.14.1 Strange bug!?

Issue - State: open - Opened by sergiomarotco over 1 year ago
Labels: bug

#1125 - Update pre-commit address and rev tag in README

Pull Request - State: closed - Opened by sadikkuzu over 1 year ago - 3 comments

#1124 - Update README.md

Pull Request - State: closed - Opened by zricethezav over 1 year ago

#1123 - fix README.md !?

Pull Request - State: closed - Opened by sergiomarotco over 1 year ago - 2 comments

#1122 - Add option to completely disable color codes

Issue - State: open - Opened by isaac-s over 1 year ago - 8 comments
Labels: enhancement

#1121 - Bufix/1100 protect stagged files

Pull Request - State: closed - Opened by RafaelFigueiredo over 1 year ago - 1 comment

#1120 - Please bump golang.org/x/sys dependency

Issue - State: open - Opened by clausecker over 1 year ago
Labels: bug

#1119 - Improve rule descriptions for Stripe and Facebook access tokens

Pull Request - State: closed - Opened by fgreinacher over 1 year ago - 2 comments

#1118 - Skip binary files by default without the need to add the extensions in the allow list

Issue - State: open - Opened by khanhldt over 1 year ago - 2 comments
Labels: enhancement

#1117 - Update gitleaks.yml

Pull Request - State: closed - Opened by zricethezav over 1 year ago

#1116 - Fix False Positives: Use Word Boundaries for EasyPost Tokens

Pull Request - State: closed - Opened by wolframhaussig over 1 year ago - 3 comments

#1115 - Request check for only time greater than 2020-01-01 for example

Issue - State: closed - Opened by quydox over 1 year ago - 2 comments
Labels: bug

#1114 - Add Commvault rule

Issue - State: open - Opened by sergiomarotco over 1 year ago
Labels: enhancement

#1113 - Installing from source doesn't work

Issue - State: closed - Opened by gabohc over 1 year ago - 3 comments
Labels: bug

#1112 - Add gradle.lockfile to allowlist

Pull Request - State: closed - Opened by juanmancebo over 1 year ago - 1 comment

#1111 - Gitleaks misses gradle.lockfile in the default allowlist

Issue - State: closed - Opened by juanmancebo over 1 year ago
Labels: enhancement

#1110 - Unclear Sarif Short Description

Issue - State: open - Opened by yaeba over 1 year ago
Labels: enhancement

#1109 - Add pnpm-lock.yaml and Database.refactorlog

Pull Request - State: closed - Opened by JoostVoskuil over 1 year ago - 1 comment

#1108 - Update pre-commit rev tag in README

Pull Request - State: closed - Opened by sadikkuzu over 1 year ago - 1 comment

#1107 - Feat/allowlist regex target

Pull Request - State: closed - Opened by zricethezav over 1 year ago

#1106 - Bump golang.org/x/sys from 0.0.0-20211110154304-99a53858aa08 to 0.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#1105 - Bump golang.org/x/text from 0.3.6 to 0.3.8

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#1103 - fix(sec): upgrade gopkg.in/yaml.v3 to 3.0.0

Pull Request - State: open - Opened by chncaption over 1 year ago - 1 comment

#1102 - Query about gitleaks scan

Issue - State: closed - Opened by priyankavit over 1 year ago - 1 comment

#1101 - fix: ignore baseline if path was not relative in source

Pull Request - State: closed - Opened by raffis over 1 year ago - 2 comments

#1100 - gitleaks protect command doesn’t ignore the secrets mentioned in .gitleaksignore file

Issue - State: closed - Opened by pbhuva-splunk over 1 year ago - 7 comments
Labels: bug

#1099 - Fix: go.mod version changed back to 1.18

Pull Request - State: open - Opened by Harshetjain666 over 1 year ago - 2 comments

#1098 - Exclude package manager lock files

Issue - State: closed - Opened by JoostVoskuil over 1 year ago - 3 comments
Labels: bug

#1097 - Git binaries needed since Gitleaks 8.11.x

Issue - State: closed - Opened by kaotika over 1 year ago - 1 comment
Labels: enhancement

#1096 - Add Defined Networking API Tokens Detector

Pull Request - State: closed - Opened by jasikpark over 1 year ago - 6 comments

#1095 - fail to scan single file

Issue - State: closed - Opened by marcelo321 over 1 year ago - 1 comment
Labels: bug

#1094 - bash detection of "password=.."

Issue - State: closed - Opened by strowi over 1 year ago - 2 comments
Labels: bug

#1093 - fix: upgrade Go deps to drop vulnerabilities

Pull Request - State: closed - Opened by jlourenc over 1 year ago - 1 comment

#1091 - Improve gitleaksignore to handle uncommitted secrets

Issue - State: open - Opened by yantantether over 1 year ago
Labels: enhancement

#1090 - Fix typos in README.md and CONTRIBUTING.md

Pull Request - State: closed - Opened by sandyydk over 1 year ago - 2 comments

#1089 - New Relic ingest browser API token incorrectly identified as secret

Issue - State: open - Opened by ojensen5115 over 1 year ago
Labels: bug

#1086 - Add Plivo Auth ID rule

Pull Request - State: open - Opened by mike-plivo almost 2 years ago - 2 comments

#1084 - Add rule for Mercury API tokens

Pull Request - State: closed - Opened by blx almost 2 years ago - 2 comments

#1082 - Detecting private keys and seed phrases for cryptocurrency wallets

Issue - State: open - Opened by andrewschreiber almost 2 years ago - 1 comment
Labels: enhancement

#1081 - feat: change aws-access-token description

Pull Request - State: closed - Opened by MintsInc almost 2 years ago - 2 comments

#1080 - Mistake in the description for aws-access-token

Issue - State: open - Opened by MintsInc almost 2 years ago - 1 comment

#1079 - Initial set of Azure secrets for #539

Pull Request - State: closed - Opened by dvasdekis almost 2 years ago - 16 comments

#1076 - ignore package-lock.json

Pull Request - State: closed - Opened by lawndoc almost 2 years ago - 4 comments

#1074 - Need more context surrounding secret

Issue - State: open - Opened by ericfrederich almost 2 years ago - 2 comments
Labels: enhancement

#1073 - Public Keys being identified as secrets

Issue - State: open - Opened by ericfrederich almost 2 years ago - 3 comments
Labels: bug

#1071 - add rule for checking nuget.config passwords

Pull Request - State: open - Opened by jankonikola93 almost 2 years ago - 1 comment

#1070 - Leak is not detected

Issue - State: open - Opened by rightphp almost 2 years ago - 2 comments
Labels: bug

#1066 - validate report path before scan start

Pull Request - State: closed - Opened by mesaglio almost 2 years ago - 5 comments

#1059 - gitleaksignore fingerprint doesn't support relative paths

Issue - State: open - Opened by jasonkarns almost 2 years ago - 2 comments
Labels: enhancement

GitHub / gitleaks/gitleaks issues and pull requests