f35c9cb2f4
* [chore] Ignore analyzer implementation tests in test-community (#3219) * [chore] Fix lint errors (#3218) * [analyze] Fix GitHub token expiration parsing (#3205) * [analyze] Capture the hierarchy of GitHub permissions (#3127) * chore(deps): update sigstore/cosign-installer action to v3.6.0 (#3211) * Add metrics for command invocation (#3185) * remove two letter keyword (#3210) * fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6 (#3208) * Capture decoding time metric (#3209) * fix(deps): update module github.com/google/go-containerregistry to v0.20.2 (#3184) * [bug] - Correctly Handle Large Files in BufferedReadSeeker (#3203) * Log when a detector ignores the timeout (#3201) * fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 (#3197) * [analyze] Fix double-print in postgres analyzer (#3199) * fix(deps): update module golang.org/x/net to v0.28.0 (#3187) * [analyze] Deduplicate finegrained GitHub permissions (#3196) * Fixes for a few finegrained token issues (#3194) * [analyze] Add basic section to README (#3190) * [analyze] Bandaid solution for occasional slow startups (#3191) * Analyzer capitalization (#3188) * [analyze] Add analyze option to main TUI and unhide subcommand (#3186) * fix(deps): update module golang.org/x/text to v0.17.0 (#3183) * fix(deps): update module golang.org/x/crypto to v0.26.0 (#3182) * Improve finegrained token support (#3179) * [chore] Use custom HTTP client in sendgrid analyzer (#3178) * [analyze] Separate SID from token in twilio analyzer (#3177) * Analyze TUI (#3172) * fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.1.0 (#3176) * Auth GitHub in Init (#3131) OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/trufflehog?expand=0&rev=119
56 lines
1.5 KiB
RPMSpec
56 lines
1.5 KiB
RPMSpec
#
|
|
# spec file for package trufflehog
|
|
#
|
|
# Copyright (c) 2024 SUSE LLC
|
|
#
|
|
# All modifications and additions to the file contributed by third parties
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
# upon. The license for this file, and modifications and additions to the
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
# license for the pristine package is not an Open Source License, in which
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
# published by the Open Source Initiative.
|
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
|
#
|
|
|
|
|
|
Name: trufflehog
|
|
Version: 3.81.8
|
|
Release: 0
|
|
Summary: CLI tool to find exposed secrets in source and archives
|
|
License: AGPL-3.0-or-later
|
|
URL: https://github.com/trufflesecurity/trufflehog
|
|
Source: trufflehog-%{version}.tar.gz
|
|
Source1: vendor.tar.gz
|
|
BuildRequires: golang(API) >= 1.22
|
|
|
|
%description
|
|
TruffleHog is a scanning engine that helps find exposed secrets
|
|
within e.g. GitHub/GitLab repos, AWS S3 buckets, GCS buckets,
|
|
Docker images, Circle CI/Travis CI setups, or in individual files.
|
|
|
|
%prep
|
|
%autosetup -D -a 1
|
|
|
|
%build
|
|
%ifnarch ppc64
|
|
export GOFLAGS="-buildmode=pie"
|
|
%endif
|
|
go build
|
|
|
|
%check
|
|
# execute the binary as a basic check
|
|
./%{name} --help
|
|
|
|
%install
|
|
install -D -m 0755 %{name} %{buildroot}%{_bindir}/%{name}
|
|
|
|
%files
|
|
%doc README.md
|
|
%license LICENSE
|
|
%{_bindir}/%{name}
|
|
|
|
%changelog
|