New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Auth GitHub in Init #3131

Merged

rosecodym merged 49 commits into main from auth-github-targeted-scans

Aug 5, 2024

Collaborator

rosecodym commented Jul 31, 2024 •

edited

Loading

Description:

The GitHub source currently applies its authentication configuration as the first step of enumeration. This is incompatible with both targeted scans and scan job reports, and also means that authentication logic has to be duplicated into the validation flow. This PR moves it into Init so that it's available to targeted scans and, eventually, unit-specific scans. This also allows us to remove the copy of the old logic that was in Validate.

As part of the work I've also cleaned up the integration test suite. (Several of them were apparently disabled back when they ran on every push, but now that we're not doing that, we can re-enable them.)

Checklist:

Tests passing (make test-community)?
Lint passing (make lint this requires golangci-lint)?

rosecodym force-pushed the auth-github-targeted-scans branch 2 times, most recently from df42ca4 to 240ae63 Compare

August 1, 2024 15:23

rosecodym added 28 commits

August 1, 2024 11:24


          use non-public repo in test

9f1d2fa


          split out newBasicAuthClient

4df0047


          create newUnauthenticatedClient

b9e382e


          create newTokenClient

72a1ed3


          create (unused) newAppClient

3c42ce1


          stash

5890aa7


          add unauthed new way

43bcedd


          add app connector

1df7a14


          stop checking for ghe in app connector

c01bcda


          split into separate files

2240bf7


          add token connector

75a7aed


          add basic auth connector

88b15fc


          update non-integration tests


          extract enumerate()

3f75432


          update enumerate

39a55b3


          fix test setup

e7e2afd


          init test correctly

122ffbf


          stash

f53f5e7


          add mock to support TestAddMembersByApp

13cd94e


          get integration tests compiling

4d144e7


          update to github v63

b48796a


          un-extract enumeration

86fa529


          implement isGHE everywhere

0d2aea6


          remove old commented code

874fabf


          wrap some errors

52e0d41


          move cloudEndpoint

ba14603


          add error check to test

909505d


          update+enable gist tests

6d9ca1d

rosecodym added 7 commits

August 1, 2024 11:24


          update disabled tests

5ef11fe


          enable another test

585774e


          enable another test

ed047ee


          enable another test

64831d8


          update test

c9f26f0


          delete dead commented code

dfa8a10


          delete obsolete test code

7a344c7

rosecodym force-pushed the auth-github-targeted-scans branch from 240ae63 to 7a344c7 Compare

August 1, 2024 15:25

rosecodym added 8 commits

August 1, 2024 11:56


          self-review

366446a


          clean up regular tests file

e019a1c


          remove HttpClient from connector

872b16c


          add comments

0fe6175


          remove stuff from interface

7b376bc


          remove some cruft

c7a14ac


          remove more cruft

778fa1a


          remove even more cruft

33b982e

rosecodym commented

View reviewed changes

pkg/sources/github/github.go

               	githubSecondsSpentRateLimited.WithLabelValues(s.name).Set(0)
               	githubReposScanned.WithLabelValues(s.name).Set(0)
-              	installationClient, err := s.enumerate(ctx, apiEndpoint)

Collaborator Author

rosecodym Aug 1, 2024

The big change in this PR is the removal of connection setup logic from the enumeration logic. They used to be heavily intertwined, which led to weird things like enumerate returning a GitHub App installation client. (This client was nil for all non-app-based configurations.)

pkg/sources/github/github_integration_test.go

Comment on lines -657 to -663

-              					Credential: &sourcespb.GitHub_GithubApp{
-              						GithubApp: &credentialspb.GitHubApp{
-              							PrivateKey:     githubPrivateKeyNew,
-              							InstallationId: githubInstallationIDNew,
-              							AppId:          githubAppIDNew,
-              						},
-              					},

Collaborator Author

rosecodym Aug 1, 2024

Apparently, this app doesn't have access to gists - even public ones. However, the test was incidentally passing because it never actually applied this authentication configuration. (That used to happen during enumeration, but this test never enumerated!) So when I moved the authentication to Init, the test started breaking.

Rather than fiddle with the app permissions I just changed the authentication configuration to match what the old test had (inadvertently) been doing.

pkg/sources/github/github_integration_test.go

Comment on lines -813 to -841

-              // func TestSource_paginateRepos(t *testing.T) {
-              // 	type args struct {
-              // 		ctx       context.Context
-              // 		apiClient *github.Client
-              // 	}
-              // 	tests := []struct {
-              // 		name string
-              // 		org  string
-              // 		args args
-              // 	}{
-              // 		{
-              // 			org: "fakeNetflix",
-              // 			args: args{
-              // 				ctx:       context.Background(),
-              // 				apiClient: github.NewClient(common.SaneHttpClient()),
-              // 			},
-              // 		},
-              // 	}
-              // 	for _, tt := range tests {
-              // 		t.Run(tt.name, func(t *testing.T) {
-              // 			s := &Source{httpClient: common.SaneHttpClient()}
-              // 			s.paginateRepos(tt.args.ctx, tt.args.apiClient, tt.org)
-              // 			if len(s.repos) < 101 {
-              // 				t.Errorf("expected > 100 repos, got %d", len(s.repos))
-              // 			}
-              // 		})
-              // 	}
-              // }

Collaborator Author

rosecodym Aug 1, 2024

This test was commented-out when it was originally committed. The method it's trying to test doesn't exist, so I just deleted it.

pkg/sources/github/github_integration_test.go

Comment on lines -873 to -876

-              							Repository: "test_keys",
-              							Link:       "https://github.com/trufflesecurity/test_keys/blob/fbc14303ffbf8fb1c2c1914e8dda7d0121633aca/keys#L4",
-              							Commit:     "fbc14303ffbf8fb1c2c1914e8dda7d0121633aca",
-              							File:       "keys",

Collaborator Author

rosecodym Aug 1, 2024

Since this repo is public, this test wasn't originally actually testing the authentication configuration that was specified. Changing it to a private repo (visible to the configured credentials) means the logic under test is actually exercised.

pkg/sources/github/github_integration_test.go

@@ @@ -884,7 +744,7 @@ func TestSource_Chunks_TargetedScan(t *testing.T) { @@
               			name: "targeted scan, one file in med commit",
               			init: init{
               				name:       "test source",
-              				connection: &sourcespb.GitHub{Credential: &sourcespb.GitHub_Token{Token: githubToken}},
+              				connection: &sourcespb.GitHub{Credential: &sourcespb.GitHub_Unauthenticated{}},

Collaborator Author

rosecodym Aug 1, 2024

This test case (and the two following) are trying to scan public repos, so I removed the (effectively unused) authentication configuration to reduce future confusion.

pkg/sources/github/github_integration_test.go Outdated

Comment on lines 64 to 79

-              	installationClient, err := s.enumerateWithApp(ctx, "https://api.github.com", conn.GetGithubApp())
-              	assert.NoError(t, err)
-              	user, token, err := s.userAndToken(ctx, installationClient)
-              	assert.NotEmpty(t, token)
-              	assert.NoError(t, err)
-              	// user provided
-              	_, _, err = git.CloneRepoUsingToken(ctx, token, "https://github.com/truffle-test-integration-org/another-test-repo.git", user)
+              	err = s.enumerateWithApp(ctx)
               	assert.NoError(t, err)
-              	// no user provided
-              	_, _, err = git.CloneRepoUsingToken(ctx, token, "https://github.com/truffle-test-integration-org/another-test-repo.git", "")
-              	assert.Error(t, err)
-              	_, _, err = s.cloneRepo(ctx, "https://github.com/truffle-test-integration-org/another-test-repo.git", installationClient)

Collaborator Author

rosecodym Aug 1, 2024

This removed code was testing implementation details that no longer exist.

mcastorina reviewed

View reviewed changes

Collaborator

mcastorina left a comment

This is a really great step towards cleaning up the GitHub source!

pkg/sources/github/connector.go Outdated

+              func newConnector(source *Source) (connector, error) {
+              	apiEndpoint := source.conn.Endpoint
+              	if len(apiEndpoint) == 0 || endsWithGithub.MatchString(apiEndpoint) {

Collaborator

mcastorina Aug 1, 2024

Nit: This might just be my personal preference, but when checking for empty strings I think it's better to do apiEndpoint == "". It's less ambiguous since len can be used for slices and maps too, so it makes it obvious that apiEndpoint is a string.

pkg/sources/github/connector.go Outdated

Comment on lines 15 to 16

		// ApiClient returns a configured GitHub client that can be used for GitHub API operations.
		ApiClient() *github.Client

Collaborator

mcastorina Aug 1, 2024

Nit: I think Go's naming conventions suggest capitalizing acronyms so this would be APIClient.

pkg/sources/github/connector_token.go Outdated

Comment on lines 85 to 91

+              	if c.user == "" {
+              		if user, err := c.getUser(ctx); err != nil {
+              			return err
+              		} else {
+              			c.user = user
+              		}
+              	}

Collaborator

mcastorina Aug 1, 2024

Nit: inverting this statement will let us de-indent most of the function:

if c.user != "" {
    return nil
}

if user, err := c.getUser(ctx); err != nil {
    return err
} else {
    c.user = user
}
return nil

or even

if c.user != "" {
    return nil
}

user, err := c.getUser(ctx)
if err != nil {
    return err
}

c.user = user
return nil

pkg/sources/github/connector_unauthenticated.go Outdated

+              var _ connector = (*unauthenticatedConnector)(nil)
+              func newUnauthenticatedConnector(apiEndpoint string) (*unauthenticatedConnector, error) {
+              	httpClient := common.RetryableHTTPClientTimeout(60)

Collaborator

mcastorina Aug 1, 2024

Nit: normally I wouldn't suggest using a constant for the 60, but since it's unit-less I think it would be a good idea to have something like:

const httpTimeoutSeconds = 60
httpClient := common.RetryableHTTPClientTimeout(httpTimeoutSeconds)

pkg/sources/github/github.go

Comment on lines +198 to +202

+              	connector, err := newConnector(s)
+              	if err != nil {
+              		return fmt.Errorf("could not create connector: %w", err)
+              	}
+              	s.connector = connector

Collaborator

mcastorina Aug 1, 2024

Love this abstraction!

pkg/sources/github/github.go

Comment on lines +317 to +318

		// I'm not wild about switching on the connector type here (as opposed to dispatching to the connector itself) but
		// this felt like a compromise that allowed me to isolate connection logic without rewriting the entire source.

Collaborator

mcastorina Aug 1, 2024

I agree with this comment. Currently enumeration is different based on how we access GitHub, but I wonder if in the future we could always enumerate the same way and ignore any errors. Maybe that's a bit wasteful with rate-limits though.. 🤔

rosecodym added 3 commits

August 2, 2024 09:05


          review feedback

2eda83e


          use consts for http timeout

5b8d602


          Merge remote-tracking branch 'origin/main' into auth-github-targeted-…

fe0c961

…scans

rosecodym marked this pull request as ready for review

August 2, 2024 13:20

rosecodym requested a review from a team as a code owner

August 2, 2024 13:20


          typecheck in only one place

f0e37e3

mcastorina approved these changes

View reviewed changes

rosecodym merged commit f26b502 into main

10 checks passed

rosecodym deleted the auth-github-targeted-scans branch

August 5, 2024 19:13

mkolasinski-splunk referenced this pull request in splunk/addonfactory-workflow-addon-release


          chore(deps): update trufflesecurity/trufflehog action to v3.81.9 (#308)

ec19fcf

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
|
[trufflesecurity/trufflehog](https://togithub.com/trufflesecurity/trufflehog)
| action | patch | `v3.81.5` -> `v3.81.9` |

---

### Release Notes

<details>
<summary>trufflesecurity/trufflehog
(trufflesecurity/trufflehog)</summary>

###
[`v3.81.9`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.81.9)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.81.8...v3.81.9)

#### What's Changed

- Capture decoding time metric by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3209](https://togithub.com/trufflesecurity/trufflehog/pull/3209)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3208](https://togithub.com/trufflesecurity/trufflehog/pull/3208)
- remove two letter keyword by [@&#8203;0x1](https://togithub.com/0x1)
in
[https://github.com/trufflesecurity/trufflehog/pull/3210](https://togithub.com/trufflesecurity/trufflehog/pull/3210)
- Add metrics for command invocation by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3185](https://togithub.com/trufflesecurity/trufflehog/pull/3185)
- chore(deps): update sigstore/cosign-installer action to v3.6.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3211](https://togithub.com/trufflesecurity/trufflehog/pull/3211)
- \[analyze] Capture the hierarchy of GitHub permissions by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3127](https://togithub.com/trufflesecurity/trufflehog/pull/3127)
- \[analyze] Fix GitHub token expiration parsing by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3205](https://togithub.com/trufflesecurity/trufflehog/pull/3205)
- \[chore] Fix lint errors by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3218](https://togithub.com/trufflesecurity/trufflehog/pull/3218)
- \[chore] Ignore analyzer implementation tests in test-community by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3219](https://togithub.com/trufflesecurity/trufflehog/pull/3219)
- Support for kebab case and dot notation in permission generation tool
by [@&#8203;abmussani](https://togithub.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3222](https://togithub.com/trufflesecurity/trufflehog/pull/3222)
- Improve domain / url handling in detectors by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3221](https://togithub.com/trufflesecurity/trufflehog/pull/3221)

**Full Changelog**:
trufflesecurity/trufflehog@v3.81.8...v3.81.9

###
[`v3.81.8`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.81.8)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.81.7...v3.81.8)

#### What's Changed

- \[analyze] Deduplicate finegrained GitHub permissions by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3196](https://togithub.com/trufflesecurity/trufflehog/pull/3196)
- fix(deps): update module golang.org/x/net to v0.28.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3187](https://togithub.com/trufflesecurity/trufflehog/pull/3187)
- \[analyze] Fix double-print in postgres analyzer by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3199](https://togithub.com/trufflesecurity/trufflehog/pull/3199)
- fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3197](https://togithub.com/trufflesecurity/trufflehog/pull/3197)
- Log when a detector ignores the timeout by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3201](https://togithub.com/trufflesecurity/trufflehog/pull/3201)
- \[bug] - Correctly Handle Large Files in BufferedReadSeeker by
[@&#8203;ahrav](https://togithub.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3203](https://togithub.com/trufflesecurity/trufflehog/pull/3203)
- fix(deps): update module github.com/google/go-containerregistry to
v0.20.2 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3184](https://togithub.com/trufflesecurity/trufflehog/pull/3184)

**Full Changelog**:
trufflesecurity/trufflehog@v3.81.7...v3.81.8

###
[`v3.81.7`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.81.7)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.81.6...v3.81.7)

#### What's Changed

- fix(deps): update module golang.org/x/crypto to v0.26.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3182](https://togithub.com/trufflesecurity/trufflehog/pull/3182)
- fix(deps): update module golang.org/x/text to v0.17.0 - autoclosed by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3183](https://togithub.com/trufflesecurity/trufflehog/pull/3183)
- \[analyze] Add analyze option to main TUI and unhide subcommand by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3186](https://togithub.com/trufflesecurity/trufflehog/pull/3186)
- Analyzer capitalization by [@&#8203;hxnyk](https://togithub.com/hxnyk)
in
[https://github.com/trufflesecurity/trufflehog/pull/3188](https://togithub.com/trufflesecurity/trufflehog/pull/3188)
- \[analyze] Bandaid solution for occasional slow startups by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3191](https://togithub.com/trufflesecurity/trufflehog/pull/3191)
- \[analyze] Add basic section to README by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3190](https://togithub.com/trufflesecurity/trufflehog/pull/3190)
- Fixes for a few finegrained token issues by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3194](https://togithub.com/trufflesecurity/trufflehog/pull/3194)

**Full Changelog**:
trufflesecurity/trufflehog@v3.81.6...v3.81.7

###
[`v3.81.6`](https://togithub.com/trufflesecurity/trufflehog/releases/tag/v3.81.6)

[Compare
Source](https://togithub.com/trufflesecurity/trufflehog/compare/v3.81.5...v3.81.6)

#### What's Changed

- Auth GitHub in Init by
[@&#8203;rosecodym](https://togithub.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3131](https://togithub.com/trufflesecurity/trufflehog/pull/3131)
- fix(deps): update module github.com/envoyproxy/protoc-gen-validate to
v1.1.0 by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3176](https://togithub.com/trufflesecurity/trufflehog/pull/3176)
- Analyze TUI by [@&#8203;mcastorina](https://togithub.com/mcastorina)
in
[https://github.com/trufflesecurity/trufflehog/pull/3172](https://togithub.com/trufflesecurity/trufflehog/pull/3172)
- \[analyze] Separate SID from token in twilio analyzer by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3177](https://togithub.com/trufflesecurity/trufflehog/pull/3177)
- \[chore] Use custom HTTP client in sendgrid analyzer by
[@&#8203;mcastorina](https://togithub.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3178](https://togithub.com/trufflesecurity/trufflehog/pull/3178)
- Improve finegrained token support by
[@&#8203;dustin-decker](https://togithub.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3179](https://togithub.com/trufflesecurity/trufflehog/pull/3179)

**Full Changelog**:
trufflesecurity/trufflehog@v3.81.5...v3.81.6

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "before 4am on Monday" (UTC),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View the
[repository job
log](https://developer.mend.io/github/splunk/addonfactory-workflow-addon-release).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4yMC4xIiwidXBkYXRlZEluVmVyIjoiMzguMjYuMSIsInRhcmdldEJyYW5jaCI6ImRldmVsb3AiLCJsYWJlbHMiOltdfQ==-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

itsacoyote referenced this pull request in zkSync-Community-Hub/community-code


          chore(deps): update all non-major dependencies (#60)

44d76d0

This PR contains the following updates:

| Package | Change | Age | Adoption | Passing | Confidence | Type |
Update |
|---|---|---|---|---|---|---|---|
| [@nuxt/fonts](https://redirect.github.com/nuxt/fonts) | [`^0.5.1` ->
`^0.7.2`](https://renovatebot.com/diffs/npm/@nuxt%2ffonts/0.5.1/0.7.2) |
[![age](https://developer.mend.io/api/mc/badges/age/npm/@nuxt%2ffonts/0.7.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/@nuxt%2ffonts/0.7.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/@nuxt%2ffonts/0.5.1/0.7.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@nuxt%2ffonts/0.5.1/0.7.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
| dependencies | minor |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
`v4.1.1` -> `v4.1.7` |
[![age](https://developer.mend.io/api/mc/badges/age/github-tags/actions%2fcheckout/v4.1.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/github-tags/actions%2fcheckout/v4.1.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/github-tags/actions%2fcheckout/v4.1.1/v4.1.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/github-tags/actions%2fcheckout/v4.1.1/v4.1.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
| action | patch |
|
[amannn/action-semantic-pull-request](https://redirect.github.com/amannn/action-semantic-pull-request)
| `v5.5.2` -> `v5.5.3` |
[![age](https://developer.mend.io/api/mc/badges/age/github-tags/amannn%2faction-semantic-pull-request/v5.5.3?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/github-tags/amannn%2faction-semantic-pull-request/v5.5.3?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/github-tags/amannn%2faction-semantic-pull-request/v5.5.2/v5.5.3?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/github-tags/amannn%2faction-semantic-pull-request/v5.5.2/v5.5.3?slim=true)](https://docs.renovatebot.com/merge-confidence/)
| action | patch |
|
[trufflesecurity/trufflehog](https://redirect.github.com/trufflesecurity/trufflehog)
| `v3.69.0` -> `v3.81.10` |
[![age](https://developer.mend.io/api/mc/badges/age/github-tags/trufflesecurity%2ftrufflehog/v3.81.10?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/github-tags/trufflesecurity%2ftrufflehog/v3.81.10?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/github-tags/trufflesecurity%2ftrufflehog/v3.69.0/v3.81.10?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/github-tags/trufflesecurity%2ftrufflehog/v3.69.0/v3.81.10?slim=true)](https://docs.renovatebot.com/merge-confidence/)
| action | minor |

---

### Release Notes

<details>
<summary>nuxt/fonts (@&#8203;nuxt/fonts)</summary>

###
[`v0.7.2`](https://redirect.github.com/nuxt/fonts/blob/HEAD/CHANGELOG.md#v072)

[Compare
Source](https://redirect.github.com/nuxt/fonts/compare/v0.7.1...v0.7.2)

[compare
changes](https://redirect.github.com/nuxt/fonts/compare/v0.7.1...v0.7.2)

##### 🔥 Performance

- **local:** Use `tinyglobby` to scan font files
([#&#8203;205](https://redirect.github.com/nuxt/fonts/pull/205))

##### 🩹 Fixes

- Apply `-` replacement to filename
([d83aa0d](https://redirect.github.com/nuxt/fonts/commit/d83aa0d))
- **adobe:** Use provided `css_names` from API
([#&#8203;192](https://redirect.github.com/nuxt/fonts/pull/192))
- **fontsource:** Use `/variable` endpoint for retrieving variable axes
([#&#8203;196](https://redirect.github.com/nuxt/fonts/pull/196))

##### 📖 Documentation

- Fix link to how it works
([#&#8203;197](https://redirect.github.com/nuxt/fonts/pull/197))
- Update carbon abs
([7b61b15](https://redirect.github.com/nuxt/fonts/commit/7b61b15))
- Improvements
([9dab0a3](https://redirect.github.com/nuxt/fonts/commit/9dab0a3))
- Update social og image
([2991df2](https://redirect.github.com/nuxt/fonts/commit/2991df2))
- Fix open an issue link on installation page
([#&#8203;206](https://redirect.github.com/nuxt/fonts/pull/206))

##### 🏡 Chore

- Lint
([dabc1ce](https://redirect.github.com/nuxt/fonts/commit/dabc1ce))

##### ✅ Tests

- Update snapshots
([5bc9ae6](https://redirect.github.com/nuxt/fonts/commit/5bc9ae6))

##### ❤️ Contributors

-   Ben McCann ([@&#8203;benmccann](http://github.com/benmccann))
-   Kethan Vegunta ([@&#8203;kethan1](http://github.com/kethan1))
-   Daniel Roe ([@&#8203;danielroe](http://github.com/danielroe))
-   Sébastien Chopin ([@&#8203;atinux](http://github.com/atinux))
-   Tom Tang ([@&#8203;qwerzl](http://github.com/qwerzl))
-   Michel EDIGHOFFER <edimitchel@gmail.com>

###
[`v0.7.1`](https://redirect.github.com/nuxt/fonts/blob/HEAD/CHANGELOG.md#v071)

[Compare
Source](https://redirect.github.com/nuxt/fonts/compare/v0.7.0...v0.7.1)

[compare
changes](https://redirect.github.com/nuxt/fonts/compare/v0.7.0...v0.7.1)

##### 🩹 Fixes

- **local:** Scan for fonts in all public assets dirs
([6e7ae2b](https://redirect.github.com/nuxt/fonts/commit/6e7ae2b))
- Ensure we don't have font filenames prefixed with `-`
([dfa252a](https://redirect.github.com/nuxt/fonts/commit/dfa252a))

##### 📖 Documentation

- Add docs page
([#&#8203;146](https://redirect.github.com/nuxt/fonts/pull/146))
- Update home page links
([8c91318](https://redirect.github.com/nuxt/fonts/commit/8c91318))
- Two more links
([5af0e5e](https://redirect.github.com/nuxt/fonts/commit/5af0e5e))

##### 🏡 Chore

- Add CODEOWNERS file
([#&#8203;156](https://redirect.github.com/nuxt/fonts/pull/156))
- Lint
([1632eee](https://redirect.github.com/nuxt/fonts/commit/1632eee))

##### ❤️ Contributors

-   Daniel Roe ([@&#8203;danielroe](http://github.com/danielroe))
-   Tom Tang ([@&#8203;qwerzl](http://github.com/qwerzl))

###
[`v0.7.0`](https://redirect.github.com/nuxt/fonts/blob/HEAD/CHANGELOG.md#v070)

[Compare
Source](https://redirect.github.com/nuxt/fonts/compare/v0.6.1...v0.7.0)

[compare
changes](https://redirect.github.com/nuxt/fonts/compare/v0.6.1...v0.7.0)

##### 🚀 Enhancements

- Allow configuring `font-stretch` property in override
([d7ff458](https://redirect.github.com/nuxt/fonts/commit/d7ff458))
- Add `preload` override + preload non subsetted fonts
([#&#8203;136](https://redirect.github.com/nuxt/fonts/pull/136))

##### 🩹 Fixes

- Do not apply ignore patterns to `_fonts` public dir
([4952673](https://redirect.github.com/nuxt/fonts/commit/4952673))

##### 📖 Documentation

- Clarify that `addPreloadLinks` only affects production
([d3cbcdb](https://redirect.github.com/nuxt/fonts/commit/d3cbcdb))
- **readme:** Replace provider count
([#&#8203;125](https://redirect.github.com/nuxt/fonts/pull/125))

##### 🏡 Chore

- Migrate to eslint v9
([#&#8203;121](https://redirect.github.com/nuxt/fonts/pull/121))
- Lint
([7fa0ef5](https://redirect.github.com/nuxt/fonts/commit/7fa0ef5))
- Update to latest `@nuxt/module-builder`
([#&#8203;139](https://redirect.github.com/nuxt/fonts/pull/139))

##### 🤖 CI

- Add codecov token
([#&#8203;140](https://redirect.github.com/nuxt/fonts/pull/140))

##### ❤️ Contributors

-   Daniel Roe ([@&#8203;danielroe](http://github.com/danielroe))
-   Jonas Thelemann <e-mail+github@jonas-thelemann.de>

###
[`v0.6.1`](https://redirect.github.com/nuxt/fonts/blob/HEAD/CHANGELOG.md#v061)

[Compare
Source](https://redirect.github.com/nuxt/fonts/compare/v0.6.0...v0.6.1)

[compare
changes](https://redirect.github.com/nuxt/fonts/compare/v0.6.0...v0.6.1)

##### 🩹 Fixes

- Add style in variable font local fallback name
([#&#8203;110](https://redirect.github.com/nuxt/fonts/pull/110))

##### 📖 Documentation

- Add link to adobe's terms and warning to read
([7872b28](https://redirect.github.com/nuxt/fonts/commit/7872b28))
- Mention non-latin subset support for adobe provider
([#&#8203;109](https://redirect.github.com/nuxt/fonts/pull/109))

##### 🏡 Chore

- **release:** V0.6.0
([0913b4b](https://redirect.github.com/nuxt/fonts/commit/0913b4b))

##### ❤️ Contributors

-   Tom Tang ([@&#8203;qwerzl](http://github.com/qwerzl))
-   Daniel Roe ([@&#8203;danielroe](http://github.com/danielroe))

###
[`v0.6.0`](https://redirect.github.com/nuxt/fonts/blob/HEAD/CHANGELOG.md#v060)

[Compare
Source](https://redirect.github.com/nuxt/fonts/compare/v0.5.1...v0.6.0)

[compare
changes](https://redirect.github.com/nuxt/fonts/compare/v0.5.1...v0.6.0)

##### 🚀 Enhancements

- **fontsource:** Support variable fonts
([#&#8203;102](https://redirect.github.com/nuxt/fonts/pull/102))

##### 🩹 Fixes

- Render variable font weight correctly
([#&#8203;99](https://redirect.github.com/nuxt/fonts/pull/99))
- Preserve `@font-face` order when rendering
([836a605](https://redirect.github.com/nuxt/fonts/commit/836a605))
- Only prepend once 🤣 and update snapshots
([8a000ae](https://redirect.github.com/nuxt/fonts/commit/8a000ae))
- Adopt forward-compatible approach to `builder:watch`
([#&#8203;101](https://redirect.github.com/nuxt/fonts/pull/101))
- Handle custom `app.baseURL` in development
([d9f4fae](https://redirect.github.com/nuxt/fonts/commit/d9f4fae))

##### 📖 Documentation

- Add image
([608653b](https://redirect.github.com/nuxt/fonts/commit/608653b))
- Mention disabling unocss web fonts preset
([627125b](https://redirect.github.com/nuxt/fonts/commit/627125b))

##### 🏡 Chore

- Link to latest version in badges
([42e7030](https://redirect.github.com/nuxt/fonts/commit/42e7030))

##### ✅ Tests

- Update poppins snapshot
([274ae5f](https://redirect.github.com/nuxt/fonts/commit/274ae5f))

##### ❤️ Contributors

-   Daniel Roe ([@&#8203;danielroe](http://github.com/danielroe))
-   Tom Tang ([@&#8203;qwerzl](http://github.com/qwerzl))
-   Sébastien Chopin ([@&#8203;Atinux](http://github.com/Atinux))

</details>

<details>
<summary>actions/checkout (actions/checkout)</summary>

###
[`v4.1.7`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v417)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.6...v4.1.7)

- Bump the minor-npm-dependencies group across 1 directory with 4
updates by [@&#8203;dependabot](https://redirect.github.com/dependabot)
in
[https://github.com/actions/checkout/pull/1739](https://redirect.github.com/actions/checkout/pull/1739)
- Bump actions/checkout from 3 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1697](https://redirect.github.com/actions/checkout/pull/1697)
- Check out other refs/\* by commit by
[@&#8203;orhantoy](https://redirect.github.com/orhantoy) in
[https://github.com/actions/checkout/pull/1774](https://redirect.github.com/actions/checkout/pull/1774)
- Pin actions/checkout's own workflows to a known, good, stable version.
by [@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1776](https://redirect.github.com/actions/checkout/pull/1776)

###
[`v4.1.6`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v416)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.5...v4.1.6)

- Check platform to set archive extension appropriately by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1732](https://redirect.github.com/actions/checkout/pull/1732)

###
[`v4.1.5`](https://redirect.github.com/actions/checkout/releases/tag/v4.1.5)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.4...v4.1.5)

#### What's Changed

- Update NPM dependencies by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1703](https://redirect.github.com/actions/checkout/pull/1703)
- Bump github/codeql-action from 2 to 3 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1694](https://redirect.github.com/actions/checkout/pull/1694)
- Bump actions/setup-node from 1 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1696](https://redirect.github.com/actions/checkout/pull/1696)
- Bump actions/upload-artifact from 2 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1695](https://redirect.github.com/actions/checkout/pull/1695)
- README: Suggest `user.email` to be
`41898282+github-actions[bot]@&#8203;users.noreply.github.com` by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1707](https://redirect.github.com/actions/checkout/pull/1707)

**Full Changelog**:
https://github.com/actions/checkout/compare/v4.1.4...v4.1.5

###
[`v4.1.4`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v414)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.3...v4.1.4)

- Disable `extensions.worktreeConfig` when disabling `sparse-checkout`
by [@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1692](https://redirect.github.com/actions/checkout/pull/1692)
- Add dependabot config by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1688](https://redirect.github.com/actions/checkout/pull/1688)
- Bump the minor-actions-dependencies group with 2 updates by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1693](https://redirect.github.com/actions/checkout/pull/1693)
- Bump word-wrap from 1.2.3 to 1.2.5 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1643](https://redirect.github.com/actions/checkout/pull/1643)

###
[`v4.1.3`](https://redirect.github.com/actions/checkout/releases/tag/v4.1.3)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.2...v4.1.3)

#### What's Changed

- Update `actions/checkout` version in `update-main-version.yml` by
[@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1650](https://redirect.github.com/actions/checkout/pull/1650)
- Check git version before attempting to disable `sparse-checkout` by
[@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1656](https://redirect.github.com/actions/checkout/pull/1656)
- Add SSH user parameter by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1685](https://redirect.github.com/actions/checkout/pull/1685)

**Full Changelog**:
https://github.com/actions/checkout/compare/v4.1.2...v4.1.3

###
[`v4.1.2`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v412)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.1...v4.1.2)

- Fix: Disable sparse checkout whenever `sparse-checkout` option is not
present [@&#8203;dscho](https://redirect.github.com/dscho) in
[https://github.com/actions/checkout/pull/1598](https://redirect.github.com/actions/checkout/pull/1598)

</details>

<details>
<summary>amannn/action-semantic-pull-request
(amannn/action-semantic-pull-request)</summary>

###
[`v5.5.3`](https://redirect.github.com/amannn/action-semantic-pull-request/releases/tag/v5.5.3)

[Compare
Source](https://redirect.github.com/amannn/action-semantic-pull-request/compare/v5.5.2...v5.5.3)

##### Bug Fixes

- Bump `braces` dependency
([#&#8203;269](https://redirect.github.com/amannn/action-semantic-pull-request/issues/269).
by [@&#8203;EelcoLos](https://redirect.github.com/EelcoLos))
([2d952a1](https://redirect.github.com/amannn/action-semantic-pull-request/commit/2d952a1bf90a6a7ab8f0293dc86f5fdf9acb1915))

</details>

<details>
<summary>trufflesecurity/trufflehog
(trufflesecurity/trufflehog)</summary>

###
[`v3.81.10`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.10)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.9...v3.81.10)

#### What's Changed

- fix(deps): update module github.com/sendgrid/sendgrid-go to
v3.15.0+incompatible by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3214](https://redirect.github.com/trufflesecurity/trufflehog/pull/3214)
- fix(deps): update module github.com/charmbracelet/bubbletea to v0.27.0
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3229](https://redirect.github.com/trufflesecurity/trufflehog/pull/3229)
- chore(deps): update golang docker tag to v1.23 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3228](https://redirect.github.com/trufflesecurity/trufflehog/pull/3228)
- fix(deps): update module github.com/prometheus/client_golang to
v1.20.1 by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3236](https://redirect.github.com/trufflesecurity/trufflehog/pull/3236)
- fix(deps): update module google.golang.org/api to v0.192.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3237](https://redirect.github.com/trufflesecurity/trufflehog/pull/3237)
- fix(deps): update module google.golang.org/api to v0.193.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3238](https://redirect.github.com/trufflesecurity/trufflehog/pull/3238)
- fix(deps): update testcontainers-go monorepo to v0.33.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3239](https://redirect.github.com/trufflesecurity/trufflehog/pull/3239)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.14.0
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3240](https://redirect.github.com/trufflesecurity/trufflehog/pull/3240)
- Customize results cleaning (using smuggled interface) by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3235](https://redirect.github.com/trufflesecurity/trufflehog/pull/3235)
- Skip filtration for targeted scans by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3243](https://redirect.github.com/trufflesecurity/trufflehog/pull/3243)
- Strip leading +/- from GitHub target diffs by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3244](https://redirect.github.com/trufflesecurity/trufflehog/pull/3244)
- Th 899 postman panic issue by
[@&#8203;LaraCroftDev](https://redirect.github.com/LaraCroftDev) in
[https://github.com/trufflesecurity/trufflehog/pull/3245](https://redirect.github.com/trufflesecurity/trufflehog/pull/3245)
- Update rotation guide link for teams by
[@&#8203;hxnyk](https://redirect.github.com/hxnyk) in
[https://github.com/trufflesecurity/trufflehog/pull/3248](https://redirect.github.com/trufflesecurity/trufflehog/pull/3248)
- Download files when reverifying by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3252](https://redirect.github.com/trufflesecurity/trufflehog/pull/3252)
- \[chore] - Update buffer by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3255](https://redirect.github.com/trufflesecurity/trufflehog/pull/3255)

#### New Contributors

- [@&#8203;LaraCroftDev](https://redirect.github.com/LaraCroftDev) made
their first contribution in
[https://github.com/trufflesecurity/trufflehog/pull/3245](https://redirect.github.com/trufflesecurity/trufflehog/pull/3245)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.9...v3.81.10

###
[`v3.81.9`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.9)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.8...v3.81.9)

#### What's Changed

- Capture decoding time metric by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3209](https://redirect.github.com/trufflesecurity/trufflehog/pull/3209)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3208](https://redirect.github.com/trufflesecurity/trufflehog/pull/3208)
- remove two letter keyword by
[@&#8203;0x1](https://redirect.github.com/0x1) in
[https://github.com/trufflesecurity/trufflehog/pull/3210](https://redirect.github.com/trufflesecurity/trufflehog/pull/3210)
- Add metrics for command invocation by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3185](https://redirect.github.com/trufflesecurity/trufflehog/pull/3185)
- chore(deps): update sigstore/cosign-installer action to v3.6.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3211](https://redirect.github.com/trufflesecurity/trufflehog/pull/3211)
- \[analyze] Capture the hierarchy of GitHub permissions by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3127](https://redirect.github.com/trufflesecurity/trufflehog/pull/3127)
- \[analyze] Fix GitHub token expiration parsing by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3205](https://redirect.github.com/trufflesecurity/trufflehog/pull/3205)
- \[chore] Fix lint errors by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3218](https://redirect.github.com/trufflesecurity/trufflehog/pull/3218)
- \[chore] Ignore analyzer implementation tests in test-community by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3219](https://redirect.github.com/trufflesecurity/trufflehog/pull/3219)
- Support for kebab case and dot notation in permission generation tool
by [@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3222](https://redirect.github.com/trufflesecurity/trufflehog/pull/3222)
- Improve domain / url handling in detectors by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3221](https://redirect.github.com/trufflesecurity/trufflehog/pull/3221)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.8...v3.81.9

###
[`v3.81.8`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.8)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.7...v3.81.8)

#### What's Changed

- \[analyze] Deduplicate finegrained GitHub permissions by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3196](https://redirect.github.com/trufflesecurity/trufflehog/pull/3196)
- fix(deps): update module golang.org/x/net to v0.28.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3187](https://redirect.github.com/trufflesecurity/trufflehog/pull/3187)
- \[analyze] Fix double-print in postgres analyzer by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3199](https://redirect.github.com/trufflesecurity/trufflehog/pull/3199)
- fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3197](https://redirect.github.com/trufflesecurity/trufflehog/pull/3197)
- Log when a detector ignores the timeout by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3201](https://redirect.github.com/trufflesecurity/trufflehog/pull/3201)
- \[bug] - Correctly Handle Large Files in BufferedReadSeeker by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3203](https://redirect.github.com/trufflesecurity/trufflehog/pull/3203)
- fix(deps): update module github.com/google/go-containerregistry to
v0.20.2 by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3184](https://redirect.github.com/trufflesecurity/trufflehog/pull/3184)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.7...v3.81.8

###
[`v3.81.7`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.7)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.6...v3.81.7)

#### What's Changed

- fix(deps): update module golang.org/x/crypto to v0.26.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3182](https://redirect.github.com/trufflesecurity/trufflehog/pull/3182)
- fix(deps): update module golang.org/x/text to v0.17.0 - autoclosed by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3183](https://redirect.github.com/trufflesecurity/trufflehog/pull/3183)
- \[analyze] Add analyze option to main TUI and unhide subcommand by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3186](https://redirect.github.com/trufflesecurity/trufflehog/pull/3186)
- Analyzer capitalization by
[@&#8203;hxnyk](https://redirect.github.com/hxnyk) in
[https://github.com/trufflesecurity/trufflehog/pull/3188](https://redirect.github.com/trufflesecurity/trufflehog/pull/3188)
- \[analyze] Bandaid solution for occasional slow startups by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3191](https://redirect.github.com/trufflesecurity/trufflehog/pull/3191)
- \[analyze] Add basic section to README by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3190](https://redirect.github.com/trufflesecurity/trufflehog/pull/3190)
- Fixes for a few finegrained token issues by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3194](https://redirect.github.com/trufflesecurity/trufflehog/pull/3194)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.6...v3.81.7

###
[`v3.81.6`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.6)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.5...v3.81.6)

#### What's Changed

- Auth GitHub in Init by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3131](https://redirect.github.com/trufflesecurity/trufflehog/pull/3131)
- fix(deps): update module github.com/envoyproxy/protoc-gen-validate to
v1.1.0 by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3176](https://redirect.github.com/trufflesecurity/trufflehog/pull/3176)
- Analyze TUI by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3172](https://redirect.github.com/trufflesecurity/trufflehog/pull/3172)
- \[analyze] Separate SID from token in twilio analyzer by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3177](https://redirect.github.com/trufflesecurity/trufflehog/pull/3177)
- \[chore] Use custom HTTP client in sendgrid analyzer by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3178](https://redirect.github.com/trufflesecurity/trufflehog/pull/3178)
- Improve finegrained token support by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3179](https://redirect.github.com/trufflesecurity/trufflehog/pull/3179)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.5...v3.81.6

###
[`v3.81.5`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.5)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.4...v3.81.5)

#### What's Changed

- Update README.md for github experimental by
[@&#8203;joeleonjr](https://redirect.github.com/joeleonjr) in
[https://github.com/trufflesecurity/trufflehog/pull/3160](https://redirect.github.com/trufflesecurity/trufflehog/pull/3160)
- fix(deps): update module github.com/schollz/progressbar/v3 to v3.14.6
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3158](https://redirect.github.com/trufflesecurity/trufflehog/pull/3158)
- \[analyze] Fix off-by-one error in generated data structures by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3162](https://redirect.github.com/trufflesecurity/trufflehog/pull/3162)
- \[bug] - Create a new context with timeout per request by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3163](https://redirect.github.com/trufflesecurity/trufflehog/pull/3163)
- \[analyze] Use permission enum values in openai analyzer by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3165](https://redirect.github.com/trufflesecurity/trufflehog/pull/3165)
- update pattern by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3167](https://redirect.github.com/trufflesecurity/trufflehog/pull/3167)
- Update Zulip detector by
[@&#8203;rgmz](https://redirect.github.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/2897](https://redirect.github.com/trufflesecurity/trufflehog/pull/2897)
- fix(deps): update module golang.org/x/oauth2 to v0.22.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3168](https://redirect.github.com/trufflesecurity/trufflehog/pull/3168)
- fix(deps): update module golang.org/x/sync to v0.8.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3169](https://redirect.github.com/trufflesecurity/trufflehog/pull/3169)
- fix(deps): update github.com/tailscale/depaware digest to
[`585336c`](https://redirect.github.com/trufflesecurity/trufflehog/commit/585336c)
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3166](https://redirect.github.com/trufflesecurity/trufflehog/pull/3166)
- Change log verbosity for detection errors by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3171](https://redirect.github.com/trufflesecurity/trufflehog/pull/3171)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.4...v3.81.5

###
[`v3.81.4`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.4)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.3...v3.81.4)

#### What's Changed

- \[bug] - add context timeout to ssh verification by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3161](https://redirect.github.com/trufflesecurity/trufflehog/pull/3161)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.3...v3.81.4

###
[`v3.81.3`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.3)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.2...v3.81.3)

#### What's Changed

- \[chore] - log detector type on error by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3159](https://redirect.github.com/trufflesecurity/trufflehog/pull/3159)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.2...v3.81.3

###
[`v3.81.2`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.2)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.1...v3.81.2)

#### What's Changed

- \[chore] - set custom transport for the Docker client by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3156](https://redirect.github.com/trufflesecurity/trufflehog/pull/3156)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.1...v3.81.2

###
[`v3.81.1`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.1)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.81.0...v3.81.1)

#### What's Changed

- \[chore] - enable block and mutex profiles by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3154](https://redirect.github.com/trufflesecurity/trufflehog/pull/3154)
- Add Analyzers interface for Square by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3141](https://redirect.github.com/trufflesecurity/trufflehog/pull/3141)
- Update module google.golang.org/api to v0.190.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3146](https://redirect.github.com/trufflesecurity/trufflehog/pull/3146)
- quick patch for cfor enumeration by
[@&#8203;joeleonjr](https://redirect.github.com/joeleonjr) in
[https://github.com/trufflesecurity/trufflehog/pull/3155](https://redirect.github.com/trufflesecurity/trufflehog/pull/3155)
- Add Analyzers interface for HuggingFace by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3140](https://redirect.github.com/trufflesecurity/trufflehog/pull/3140)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.81.0...v3.81.1

###
[`v3.81.0`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.81.0)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.80.6...v3.81.0)

#### What's Changed

- Add progress bar to CFOR by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3151](https://redirect.github.com/trufflesecurity/trufflehog/pull/3151)
- \[fix] Always configure the engine with the default detectors by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3152](https://redirect.github.com/trufflesecurity/trufflehog/pull/3152)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.80.6...v3.81.0

###
[`v3.80.6`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.80.6)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.80.5...v3.80.6)

#### What's Changed

- Add Analyze interface to Stripe by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3132](https://redirect.github.com/trufflesecurity/trufflehog/pull/3132)
- \[analyze] Combine access level into permission value by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3144](https://redirect.github.com/trufflesecurity/trufflehog/pull/3144)
- \[chore] - move automaxprocs to init by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3143](https://redirect.github.com/trufflesecurity/trufflehog/pull/3143)
- add twilio analyze relationships by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3148](https://redirect.github.com/trufflesecurity/trufflehog/pull/3148)
- \[chore] Only set default detectors if none are provided by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3147](https://redirect.github.com/trufflesecurity/trufflehog/pull/3147)
- CFOR Commit Scanner by
[@&#8203;joeleonjr](https://redirect.github.com/joeleonjr) in
[https://github.com/trufflesecurity/trufflehog/pull/3145](https://redirect.github.com/trufflesecurity/trufflehog/pull/3145)
- \[perf] - Leverage pgzip for Parallel decompression by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3149](https://redirect.github.com/trufflesecurity/trufflehog/pull/3149)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.80.5...v3.80.6

###
[`v3.80.5`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.80.5)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/3.80.4...v3.80.5)

#### What's Changed

- Add permissions lookup tables by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3125](https://redirect.github.com/trufflesecurity/trufflehog/pull/3125)
- Export maps from permission generation by
[@&#8203;hxnyk](https://redirect.github.com/hxnyk) in
[https://github.com/trufflesecurity/trufflehog/pull/3137](https://redirect.github.com/trufflesecurity/trufflehog/pull/3137)
- \[chore] - Set GOMAXPROCS by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3136](https://redirect.github.com/trufflesecurity/trufflehog/pull/3136)
- \[chore] - address linter by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3133](https://redirect.github.com/trufflesecurity/trufflehog/pull/3133)
- \[refactor] - Improve Performance by Shifting Concurrency from Image
to Layer Level by [@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3135](https://redirect.github.com/trufflesecurity/trufflehog/pull/3135)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/3.80.4...v3.80.5

###
[`v3.80.4`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/3.80.4)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.80.3...3.80.4)

#### What's Changed

- Analyzer partial implementations by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3114](https://redirect.github.com/trufflesecurity/trufflehog/pull/3114)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.55.5 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3116](https://redirect.github.com/trufflesecurity/trufflehog/pull/3116)
- Separate out printing statements with anlayzer logic for Shopify by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3123](https://redirect.github.com/trufflesecurity/trufflehog/pull/3123)
- Separate out printing statements with anlayzer logic for Square by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3122](https://redirect.github.com/trufflesecurity/trufflehog/pull/3122)
- Separate out printing statements with anlayzer logic for twilio by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3118](https://redirect.github.com/trufflesecurity/trufflehog/pull/3118)
- Add new canary ID by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3117](https://redirect.github.com/trufflesecurity/trufflehog/pull/3117)
- Update GitHub integration tests by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3124](https://redirect.github.com/trufflesecurity/trufflehog/pull/3124)
- Separate out printing statements with anlayzer logic for Slack by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3121](https://redirect.github.com/trufflesecurity/trufflehog/pull/3121)
- Separate out printing statements with anlayzer logic for Stripe by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3120](https://redirect.github.com/trufflesecurity/trufflehog/pull/3120)
- nitro detector was removed and needs to be deprecated by
[@&#8203;0x1](https://redirect.github.com/0x1) in
[https://github.com/trufflesecurity/trufflehog/pull/3102](https://redirect.github.com/trufflesecurity/trufflehog/pull/3102)
- Separate out printing statements with anlayzer logic for SourceGraph
by [@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3119](https://redirect.github.com/trufflesecurity/trufflehog/pull/3119)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.80.3...3.80.4

###
[`v3.80.3`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.80.3)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.80.2...v3.80.3)

#### What's Changed

- fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.5
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3108](https://redirect.github.com/trufflesecurity/trufflehog/pull/3108)
- \[chore] Move openai log message to proper function by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3105](https://redirect.github.com/trufflesecurity/trufflehog/pull/3105)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.55.3 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3107](https://redirect.github.com/trufflesecurity/trufflehog/pull/3107)
- \[analyze] Implement Analyzer interface for github by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3110](https://redirect.github.com/trufflesecurity/trufflehog/pull/3110)
- Support openai project and fine grained tokens by
[@&#8203;dustin-decker](https://redirect.github.com/dustin-decker) in
[https://github.com/trufflesecurity/trufflehog/pull/3112](https://redirect.github.com/trufflesecurity/trufflehog/pull/3112)
- \[analyze] Add description and user to openai metadata by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3111](https://redirect.github.com/trufflesecurity/trufflehog/pull/3111)
- \[chore] - Manually update Depedencies by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3106](https://redirect.github.com/trufflesecurity/trufflehog/pull/3106)
- Use non-canary credentials for AWS tests by
[@&#8203;rosecodym](https://redirect.github.com/rosecodym) in
[https://github.com/trufflesecurity/trufflehog/pull/3109](https://redirect.github.com/trufflesecurity/trufflehog/pull/3109)
- Include default detectors when using a config that contains detectors
by
[@&#8203;harmonherring-pro](https://redirect.github.com/harmonherring-pro)
in
[https://github.com/trufflesecurity/trufflehog/pull/3115](https://redirect.github.com/trufflesecurity/trufflehog/pull/3115)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.80.2...v3.80.3

###
[`v3.80.2`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.80.2)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.80.1...v3.80.2)

#### What's Changed

- Added Twitter v2 Detector by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3016](https://redirect.github.com/trufflesecurity/trufflehog/pull/3016)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.54.20 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3077](https://redirect.github.com/trufflesecurity/trufflehog/pull/3077)
- \[bug] - add verify check by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3079](https://redirect.github.com/trufflesecurity/trufflehog/pull/3079)
- \[chore] - Reduce `VerificationOverlapWorker`s by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3082](https://redirect.github.com/trufflesecurity/trufflehog/pull/3082)
- fix(deps): update module github.com/couchbase/gocb/v2 to v2.9.1 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3078](https://redirect.github.com/trufflesecurity/trufflehog/pull/3078)
- fix(deps): update golang.org/x/exp digest to
[`8a7402a`](https://redirect.github.com/trufflesecurity/trufflehog/commit/8a7402a)
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3083](https://redirect.github.com/trufflesecurity/trufflehog/pull/3083)
- fix(deps): update module github.com/googleapis/gax-go/v2 to v2.13.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3085](https://redirect.github.com/trufflesecurity/trufflehog/pull/3085)
- fix(deps): update module google.golang.org/api to v0.189.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3086](https://redirect.github.com/trufflesecurity/trufflehog/pull/3086)
- implemented a netsuite detector by
[@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3068](https://redirect.github.com/trufflesecurity/trufflehog/pull/3068)
- Remove onwater detector by
[@&#8203;trufflesteeeve](https://redirect.github.com/trufflesteeeve) in
[https://github.com/trufflesecurity/trufflehog/pull/3088](https://redirect.github.com/trufflesecurity/trufflehog/pull/3088)
- Fixed Crash issue in atlassian V2 if data in response is empty array
by [@&#8203;abmussani](https://redirect.github.com/abmussani) in
[https://github.com/trufflesecurity/trufflehog/pull/3091](https://redirect.github.com/trufflesecurity/trufflehog/pull/3091)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.55.1 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3087](https://redirect.github.com/trufflesecurity/trufflehog/pull/3087)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.55.2 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3094](https://redirect.github.com/trufflesecurity/trufflehog/pull/3094)
- \[chore] - remove deps from docker image by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3097](https://redirect.github.com/trufflesecurity/trufflehog/pull/3097)
- \[bug]- Invalid Seek for Non-Seekable Readers by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3095](https://redirect.github.com/trufflesecurity/trufflehog/pull/3095)
- chore: fix some comments by
[@&#8203;shangchenglumetro](https://redirect.github.com/shangchenglumetro)
in
[https://github.com/trufflesecurity/trufflehog/pull/3098](https://redirect.github.com/trufflesecurity/trufflehog/pull/3098)
- Analyze by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3099](https://redirect.github.com/trufflesecurity/trufflehog/pull/3099)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.13.5
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3096](https://redirect.github.com/trufflesecurity/trufflehog/pull/3096)
- \[chore] Fix Versioner interface for twitter by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3104](https://redirect.github.com/trufflesecurity/trufflehog/pull/3104)
- Implement Analyzer interface for openai by
[@&#8203;mcastorina](https://redirect.github.com/mcastorina) in
[https://github.com/trufflesecurity/trufflehog/pull/3101](https://redirect.github.com/trufflesecurity/trufflehog/pull/3101)

#### New Contributors

-
[@&#8203;shangchenglumetro](https://redirect.github.com/shangchenglumetro)
made their first contribution in
[https://github.com/trufflesecurity/trufflehog/pull/3098](https://redirect.github.com/trufflesecurity/trufflehog/pull/3098)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.80.1...v3.80.2

###
[`v3.80.1`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.80.1)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.80.0...v3.80.1)

#### What's Changed

- fix(deps): update golang.org/x/exp digest to
[`e3f2596`](https://redirect.github.com/trufflesecurity/trufflehog/commit/e3f2596)
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3071](https://redirect.github.com/trufflesecurity/trufflehog/pull/3071)
- chore: fix goreleaser config and command line options for goreleaser
v2 by
[@&#8203;suzuki-shunsuke](https://redirect.github.com/suzuki-shunsuke)
in
[https://github.com/trufflesecurity/trufflehog/pull/3073](https://redirect.github.com/trufflesecurity/trufflehog/pull/3073)

#### New Contributors

- [@&#8203;suzuki-shunsuke](https://redirect.github.com/suzuki-shunsuke)
made their first contribution in
[https://github.com/trufflesecurity/trufflehog/pull/3073](https://redirect.github.com/trufflesecurity/trufflehog/pull/3073)

**Full Changelog**:
https://github.com/trufflesecurity/trufflehog/compare/v3.80.0...v3.80.1

###
[`v3.80.0`](https://redirect.github.com/trufflesecurity/trufflehog/releases/tag/v3.80.0)

[Compare
Source](https://redirect.github.com/trufflesecurity/trufflehog/compare/v3.79.0...v3.80.0)

#### What's Changed

- Add endorlabs detector by
[@&#8203;shreyas-sriram](https://redirect.github.com/shreyas-sriram) in
[https://github.com/trufflesecurity/trufflehog/pull/3015](https://redirect.github.com/trufflesecurity/trufflehog/pull/3015)
- New Source: HuggingFace by
[@&#8203;joeleonjr](https://redirect.github.com/joeleonjr) in
[https://github.com/trufflesecurity/trufflehog/pull/3000](https://redirect.github.com/trufflesecurity/trufflehog/pull/3000)
- Update README.md by
[@&#8203;joeleonjr](https://redirect.github.com/joeleonjr) in
[https://github.com/trufflesecurity/trufflehog/pull/3019](https://redirect.github.com/trufflesecurity/trufflehog/pull/3019)
- fixing docs by
[@&#8203;dylanTruffle](https://redirect.github.com/dylanTruffle) in
[https://github.com/trufflesecurity/trufflehog/pull/3022](https://redirect.github.com/trufflesecurity/trufflehog/pull/3022)
- fix(deps): update module github.com/charmbracelet/bubbletea to v0.26.6
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/2998](https://redirect.github.com/trufflesecurity/trufflehog/pull/2998)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.54.11 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3025](https://redirect.github.com/trufflesecurity/trufflehog/pull/3025)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.13.2
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3024](https://redirect.github.com/trufflesecurity/trufflehog/pull/3024)
- fix(deps): update module github.com/brianvoe/gofakeit/v7 to v7.0.4 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3026](https://redirect.github.com/trufflesecurity/trufflehog/pull/3026)
- fix(deps): update module github.com/couchbase/gocb/v2 to v2.9.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3030](https://redirect.github.com/trufflesecurity/trufflehog/pull/3030)
- update LaunchDarkly detector to use the caller-identity API by
[@&#8203;pkaeding](https://redirect.github.com/pkaeding) in
[https://github.com/trufflesecurity/trufflehog/pull/3018](https://redirect.github.com/trufflesecurity/trufflehog/pull/3018)
- fix(deps): update module github.com/wasilibs/go-re2 to v1.6.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3033](https://redirect.github.com/trufflesecurity/trufflehog/pull/3033)
- fix(deps): update module github.com/xanzy/go-gitlab to v0.106.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3035](https://redirect.github.com/trufflesecurity/trufflehog/pull/3035)
- \[chore] - remove launchdarkly dep by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3034](https://redirect.github.com/trufflesecurity/trufflehog/pull/3034)
- Fix race in `caflou` and `ldap` detectors by
[@&#8203;rgmz](https://redirect.github.com/rgmz) in
[https://github.com/trufflesecurity/trufflehog/pull/3028](https://redirect.github.com/trufflesecurity/trufflehog/pull/3028)
- Elevenlabs detector by
[@&#8203;dylanTruffle](https://redirect.github.com/dylanTruffle) in
[https://github.com/trufflesecurity/trufflehog/pull/3023](https://redirect.github.com/trufflesecurity/trufflehog/pull/3023)
- fix(deps): update module go.mongodb.org/mongo-driver to v1.16.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3036](https://redirect.github.com/trufflesecurity/trufflehog/pull/3036)
- fix(deps): update module cloud.google.com/go/secretmanager to v1.13.3
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3037](https://redirect.github.com/trufflesecurity/trufflehog/pull/3037)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.54.14 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3042](https://redirect.github.com/trufflesecurity/trufflehog/pull/3042)
- fix(deps): update module cloud.google.com/go/storage to v1.43.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3043](https://redirect.github.com/trufflesecurity/trufflehog/pull/3043)
- fix(deps): update module golang.org/x/net to v0.27.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3046](https://redirect.github.com/trufflesecurity/trufflehog/pull/3046)
- fix(deps): update module golang.org/x/crypto to v0.25.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3045](https://redirect.github.com/trufflesecurity/trufflehog/pull/3045)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.54.15 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3049](https://redirect.github.com/trufflesecurity/trufflehog/pull/3049)
- fix(deps): update testcontainers-go monorepo to v0.32.0 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3050](https://redirect.github.com/trufflesecurity/trufflehog/pull/3050)
- \[chore] - remove dead Chunker code by
[@&#8203;ahrav](https://redirect.github.com/ahrav) in
[https://github.com/trufflesecurity/trufflehog/pull/3044](https://redirect.github.com/trufflesecurity/trufflehog/pull/3044)
- chore(deps): update goreleaser/goreleaser-action action to v6 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3051](https://redirect.github.com/trufflesecurity/trufflehog/pull/3051)
- fix(deps): update golang.org/x/exp digest to
[`46b0784`](https://redirect.github.com/trufflesecurity/trufflehog/commit/46b0784)
by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3053](https://redirect.github.com/trufflesecurity/trufflehog/pull/3053)
- fix(deps): update module github.com/aws/aws-sdk-go to v1.54.16 by
[@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3054](https://redirect.github.com/trufflesecurity/trufflehog/pull/3054)
- fix(deps): update module github.com/google/go-containerregistry to
v0.20.0 by [@&#8203;renovate](https://redirect.github.com/renovate) in
[https://github.com/trufflesecurity/trufflehog/pull/3055](https://redirect.github.com/trufflesecurity/trufflehog/pull/3055)
- 

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "every weekend" in timezone
Europe/London, Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/zkSync-Community-Hub/community-code).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC41OS4yIiwidXBkYXRlZEluVmVyIjoiMzguNTkuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

renovate bot mentioned this pull request

chore(deps): update all non-major dependencies matter-labs/zksync-docs#213

Open

1 task

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet