Accepting request 1194108 from devel:languages:go

- Update to version 3.81.8:
  * [chore] Ignore analyzer implementation tests in test-community (#3219)
  * [chore] Fix lint errors (#3218)
  * [analyze] Fix GitHub token expiration parsing (#3205)
  * [analyze] Capture the hierarchy of GitHub permissions (#3127)
  * chore(deps): update sigstore/cosign-installer action to v3.6.0 (#3211)
  * Add metrics for command invocation (#3185)
  * remove two letter keyword (#3210)
  * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6 (#3208)
  * Capture decoding time metric (#3209)
  * fix(deps): update module github.com/google/go-containerregistry to v0.20.2 (#3184)
  * [bug] - Correctly Handle Large Files in BufferedReadSeeker (#3203)
  * Log when a detector ignores the timeout (#3201)
  * fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 (#3197)
  * [analyze] Fix double-print in postgres analyzer (#3199)
  * fix(deps): update module golang.org/x/net to v0.28.0 (#3187)
  * [analyze] Deduplicate finegrained GitHub permissions (#3196)
  * Fixes for a few finegrained token issues (#3194)
  * [analyze] Add basic section to README (#3190)
  * [analyze] Bandaid solution for occasional slow startups (#3191)
  * Analyzer capitalization (#3188)
  * [analyze] Add analyze option to main TUI and unhide subcommand (#3186)
  * fix(deps): update module golang.org/x/text to v0.17.0 (#3183)
  * fix(deps): update module golang.org/x/crypto to v0.26.0 (#3182)
  * Improve finegrained token support (#3179)
  * [chore] Use custom HTTP client in sendgrid analyzer (#3178)
  * [analyze] Separate SID from token in twilio analyzer (#3177)
  * Analyze TUI (#3172)
  * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.1.0 (#3176)
  * Auth GitHub in Init (#3131) (forwarded request 1194071 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1194108
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/trufflehog?expand=0&rev=44

_service

@@ -3,7 +3,7 @@
     <param name="url">https://github.com/trufflesecurity/trufflehog.git</param>
     <param name="scm">git</param>
     <param name="revision">main</param>
-    <param name="version">v3.80.5</param>
+    <param name="version">v3.81.8</param>
   	<param name="versionrewrite-pattern">v(.*)</param>
 	<param name="changesgenerate">enable</param>
   </service>

trufflehog-3.80.5.obscpio

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3499aafdf1491843151553aa5db49314c4a7bd0af69dd43a5887d62ef1acdc51
-size 10788877

trufflehog-3.81.8.obscpio

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:cc9119f24172a3d552c221df9606cf8782c81644c4516dce5905f3ac4316c05b
+size 10880525

trufflehog.changes

@@ -1,3 +1,112 @@
+-------------------------------------------------------------------
+Thu Aug 15 08:49:23 UTC 2024 - felix.niederwanger@suse.de
+
+- Update to version 3.81.8:
+  * [chore] Ignore analyzer implementation tests in test-community (#3219)
+  * [chore] Fix lint errors (#3218)
+  * [analyze] Fix GitHub token expiration parsing (#3205)
+  * [analyze] Capture the hierarchy of GitHub permissions (#3127)
+  * chore(deps): update sigstore/cosign-installer action to v3.6.0 (#3211)
+  * Add metrics for command invocation (#3185)
+  * remove two letter keyword (#3210)
+  * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6 (#3208)
+  * Capture decoding time metric (#3209)
+  * fix(deps): update module github.com/google/go-containerregistry to v0.20.2 (#3184)
+  * [bug] - Correctly Handle Large Files in BufferedReadSeeker (#3203)
+  * Log when a detector ignores the timeout (#3201)
+  * fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 (#3197)
+  * [analyze] Fix double-print in postgres analyzer (#3199)
+  * fix(deps): update module golang.org/x/net to v0.28.0 (#3187)
+  * [analyze] Deduplicate finegrained GitHub permissions (#3196)
+  * Fixes for a few finegrained token issues (#3194)
+  * [analyze] Add basic section to README (#3190)
+  * [analyze] Bandaid solution for occasional slow startups (#3191)
+  * Analyzer capitalization (#3188)
+  * [analyze] Add analyze option to main TUI and unhide subcommand (#3186)
+  * fix(deps): update module golang.org/x/text to v0.17.0 (#3183)
+  * fix(deps): update module golang.org/x/crypto to v0.26.0 (#3182)
+  * Improve finegrained token support (#3179)
+  * [chore] Use custom HTTP client in sendgrid analyzer (#3178)
+  * [analyze] Separate SID from token in twilio analyzer (#3177)
+  * Analyze TUI (#3172)
+  * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.1.0 (#3176)
+  * Auth GitHub in Init (#3131)
+  * Change log verbosity for detection errors (#3171)
+  * fix(deps): update github.com/tailscale/depaware digest to 585336c (#3166)
+  * fix(deps): update module golang.org/x/sync to v0.8.0 (#3169)
+  * fix(deps): update module golang.org/x/oauth2 to v0.22.0 (#3168)
+  * Update Zulip detector (#2897)
+  * update pattern (#3167)
+  * [analyze] Use permission enum values in openai analyzer (#3165)
+  * [bug] - Create a new context with timeout per request (#3163)
+  * [analyze] Fix off-by-one error in generated data structures (#3162)
+  * fix(deps): update module github.com/schollz/progressbar/v3 to v3.14.6 (#3158)
+  * Update README.md (#3160)
+  * [bug] - add context timeout to ssh verification (#3161)
+  * [chore] - log detector type on error (#3159)
+  * [chore] - set custom transport for the Docker client (#3156)
+  * Add Analyzers interface for HuggingFace (#3140)
+  * quick patch for cfor enumeration (#3155)
+  * fix(deps): update module google.golang.org/api to v0.190.0 (#3146)
+  * Add Analyzers interface for Square (#3141)
+  * enable mutex and block profiler (#3154)
+  * [fix] Always configure the engine with the default detectors (#3152)
+  * Add progress bar to CFOR (#3151)
+  * [perf] -  Leverage pgzip for Parallel decompression (#3149)
+  * CFOR Commit Scanner (#3145)
+  * [chore] Only set default detectors if none are provided (#3147)
+  * add twilio analyze relationships (#3148)
+  * [chore] - move automaxprocs to init (#3143)
+  * [analyze] Combine access level into permission value (#3144)
+  * Add Analyze interface to Stripe (#3132)
+  * move concurrency (#3135)
+  * [chore] - address linter (#3133)
+  * [chore] - Set GOMAXPROCS (#3136)
+  * Export maps from permission generation (#3137)
+  * Add permissions lookup tables (#3125)
+  * Separate out printing statements with anlayzer logic for SourceGraph (#3119)
+  * nitro detector was removed and needed to be deprecated (#3102)
+  * Separate out printing statements with anlayzer logic for Stripe (#3120)
+  * Separate out printing statements with anlayzer logic for Slack (#3121)
+  * Update GitHub integration tests (#3124)
+  * Add new canary ID (#3117)
+  * Separated printing and analyzes functionality for twilio (#3118)
+  * Separated printing and analyzes functionality for square (#3122)
+  * Separated printing and analyzes functionality for shopify (#3123)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.5 (#3116)
+  * Analyzer partial implementations (#3114)
+  * Include default detectors when using a config that contains detectors (#3115)
+  * Use non-canary credentials for AWS tests (#3109)
+  * fix dep versions (#3106)
+  * [analyze] Add description and user to openai metadata (#3111)
+  * Support openai project and fine grained tokens (#3112)
+  * [analyze] Implement Analyzer interface for github (#3110)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.3 (#3107)
+  * [chore] Move openai log message to proper function (#3105)
+  * fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.5 (#3108)
+  * Implement Analyzer interface for openai (#3101)
+  * [chore] Fix Versioner interface for twitter (#3104)
+  * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.5 (#3096)
+  * Analyze (#3099)
+  * chore: fix some comments (#3098)
+  * [bug]-  Invalid Seek for Non-Seekable Readers (#3095)
+  * remove deps from docker image (#3097)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.2 (#3094)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.55.1 (#3087)
+  * fixed crash issue if data array is empty (#3091)
+  * Remove onwater detector (#3088)
+  * implemented a netsuite detector (#3068)
+  * fix(deps): update module google.golang.org/api to v0.189.0 (#3086)
+  * fix(deps): update module github.com/googleapis/gax-go/v2 to v2.13.0 (#3085)
+  * fix(deps): update golang.org/x/exp digest to 8a7402a (#3083)
+  * fix(deps): update module github.com/couchbase/gocb/v2 to v2.9.1 (#3078)
+  * [chore] - Reduce `VerificationOverlapWorker`s (#3082)
+  * add verify check (#3079)
+  * fix(deps): update module github.com/aws/aws-sdk-go to v1.54.20 (#3077)
+  * Added Twitter v2 Detector (#3016)
+  * chore: fix .goreleaser.yml and goreleaser usage for goreleaser v2 (#3073)
+  * fix(deps): update golang.org/x/exp digest to e3f2596 (#3071)
+
 -------------------------------------------------------------------
 Thu Aug 01 11:37:08 UTC 2024 - felix.niederwanger@suse.com
 

trufflehog.obsinfo

@@ -1,4 +1,4 @@
 name: trufflehog
-version: 3.80.5
+version: 3.81.8
-mtime: 1722477498
+mtime: 1723669345
-commit: 048ec26c9261f70732d4403df2f45561c41c8161
+commit: daa45cfac4303f30c05e49f0c62443858cac0be7

trufflehog.spec

@@ -17,7 +17,7 @@
 
 
 Name:           trufflehog
-Version:        3.80.5
+Version:        3.81.8
 Release:        0
 Summary:        CLI tool to find exposed secrets in source and archives
 License:        AGPL-3.0-or-later

vendor.tar.gz

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:c5dc4133d690d3ea3f9348d86a4a67bcc907f14eaae807c9ad7efdee81ea411d
+oid sha256:a5820c2dd8442fbee4587f72ad4173ebf825d5d5deaf4fdef731fd978fe83696
-size 21555958
+size 21547973