trufflehog/trufflehog.spec

#
# spec file for package trufflehog
#
# Copyright (c) 2024 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.

# Please submit bugfixes or comments via https://bugs.opensuse.org/
#


Name:           trufflehog
Version:        3.81.8
Release:        0
Summary:        CLI tool to find exposed secrets in source and archives
License:        AGPL-3.0-or-later
URL:            https://github.com/trufflesecurity/trufflehog
Source:         trufflehog-%{version}.tar.gz
Source1:        vendor.tar.gz
BuildRequires:  golang(API) >= 1.22

%description
TruffleHog is a scanning engine that helps find exposed secrets
within e.g. GitHub/GitLab repos, AWS S3 buckets, GCS buckets,
Docker images, Circle CI/Travis CI setups, or in individual files.

%prep
%autosetup -D -a 1

%build
%ifnarch ppc64
export GOFLAGS="-buildmode=pie"
%endif
go build

%check
# execute the binary as a basic check
./%{name} --help

%install
install -D -m 0755 %{name} %{buildroot}%{_bindir}/%{name}

%files
%doc README.md
%license LICENSE
%{_bindir}/%{name}

%changelog
- Update to version 3.81.8: * [chore] Ignore analyzer implementation tests in test-community (#3219) * [chore] Fix lint errors (#3218) * [analyze] Fix GitHub token expiration parsing (#3205) * [analyze] Capture the hierarchy of GitHub permissions (#3127) * chore(deps): update sigstore/cosign-installer action to v3.6.0 (#3211) * Add metrics for command invocation (#3185) * remove two letter keyword (#3210) * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6 (#3208) * Capture decoding time metric (#3209) * fix(deps): update module github.com/google/go-containerregistry to v0.20.2 (#3184) * [bug] - Correctly Handle Large Files in BufferedReadSeeker (#3203) * Log when a detector ignores the timeout (#3201) * fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 (#3197) * [analyze] Fix double-print in postgres analyzer (#3199) * fix(deps): update module golang.org/x/net to v0.28.0 (#3187) * [analyze] Deduplicate finegrained GitHub permissions (#3196) * Fixes for a few finegrained token issues (#3194) * [analyze] Add basic section to README (#3190) * [analyze] Bandaid solution for occasional slow startups (#3191) * Analyzer capitalization (#3188) * [analyze] Add analyze option to main TUI and unhide subcommand (#3186) * fix(deps): update module golang.org/x/text to v0.17.0 (#3183) * fix(deps): update module golang.org/x/crypto to v0.26.0 (#3182) * Improve finegrained token support (#3179) * [chore] Use custom HTTP client in sendgrid analyzer (#3178) * [analyze] Separate SID from token in twilio analyzer (#3177) * Analyze TUI (#3172) * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.1.0 (#3176) * Auth GitHub in Init (#3131) OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/trufflehog?expand=0&rev=119 2024-08-15 12:44:30 +00:00			`#`
			`# spec file for package trufflehog`
			`#`
			`# Copyright (c) 2024 SUSE LLC`
			`#`
			`# All modifications and additions to the file contributed by third parties`
			`# remain the property of their copyright owners, unless otherwise agreed`
			`# upon. The license for this file, and modifications and additions to the`
			`# file, is the same license as for the pristine package itself (unless the`
			`# license for the pristine package is not an Open Source License, in which`
			`# case the license is the MIT License). An "Open Source License" is a`
			`# license that conforms to the Open Source Definition (Version 1.9)`
			`# published by the Open Source Initiative.`

			`# Please submit bugfixes or comments via https://bugs.opensuse.org/`
			`#`


			`Name: trufflehog`
			`Version: 3.81.8`
			`Release: 0`
			`Summary: CLI tool to find exposed secrets in source and archives`
			`License: AGPL-3.0-or-later`
			`URL: https://github.com/trufflesecurity/trufflehog`
			`Source: trufflehog-%{version}.tar.gz`
			`Source1: vendor.tar.gz`
			`BuildRequires: golang(API) >= 1.22`

			`%description`
			`TruffleHog is a scanning engine that helps find exposed secrets`
			`within e.g. GitHub/GitLab repos, AWS S3 buckets, GCS buckets,`
			`Docker images, Circle CI/Travis CI setups, or in individual files.`

			`%prep`
			`%autosetup -D -a 1`

			`%build`
			`%ifnarch ppc64`
			`export GOFLAGS="-buildmode=pie"`
			`%endif`
			`go build`

			`%check`
			`# execute the binary as a basic check`
			`./%{name} --help`

			`%install`
			`install -D -m 0755 %{name} %{buildroot}%{_bindir}/%{name}`

			`%files`
			`%doc README.md`
			`%license LICENSE`
			`%{_bindir}/%{name}`

			`%changelog`