Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

3.4.5-beta 2022-02-14

Use prefix when looking for GitLab personal access tokens

3.4.4-beta 2021-07-19

Improvement for slack token regex

3.4.3-beta 2020-02-02

When a GitLab group is specified, include projects from subgroups by default

3.4.2-beta 2020-12-04

Merged PR that fixed a bug causing private repos not to be scanned even if the token provided had access
Improved implementation of IClient interface for GitLab as a result of previous merge

3.4.1-beta 2020-12-04

Add a -exit-on-finish option for better support of automation scenarios.

3.4.0-beta 2020-06-18

Update/fix file and content signatures
Fix bug where repo clones weren't properly deleted from the temp directory
Add new signatures for zoom meeting links, google meet links, and ngrok reverse tunnels

3.3.2-beta 2020-06-18

Changed

Re-add build and release scripts after merge from phantomSecrets

3.3.1-beta 2020-06-18

Changed

Bring in changes from @mattyjones for go modules support.

3.2.1-beta 2020-05-18

Changed

Improve matching for GitLab PATs
Fix escaping in content signatures.

3.2.0-beta 2020-05-18

Changed

Improve matching for file signatures in general via regex improvements

Added

Add file signatures for common GitLab configuration files

3.1.4-alpha 2020-05-18

Added

Improve regexes for GitLab PAT

3.1.3-alpha 2020-05-04

Added

Bug fixes for content scans that hit really large commits. This bug is due to an issue the go-diff depenency used by go-git: sergi/go-diff#89

3.1.2-alpha 2020-05-03

Added

Bug fixes for UI: results should now load in the modal properly
Added GitHub action for branch and master builds

3.1.1-alpha 2020-04-08

Changed

Resolved a dependency problem where the locked version of github.com/xanzy/go-gitlab was incorrect.
Removed rate limit handling for GitLab API requests from gitrob directly in leu of go-gitlab's new implementation with the newly locked version.

3.1.0-alpha 2020-03-30

Added

Docker support
Bug fix: include go-gitlab in dep dependency .toml and .lock files.

Changed

Windows releases have been removed temporarily due to a platform build issue introduced with github.com/xanzy/go-gitlab

3.0.0-alpha - 2020-03-27

Added

Support for GitLab users and groups
Support for multiple modes of execution including content search
- Mode 1 - Default mode to match on file signatures
- Mode 2 - Match on file signatures then content signatures to constitute a result.
- Mode 3 - Match on content signatures only without file signature matches.
Support for in-memory repository clones, which can result in significantly faster analysis times depending on your hardware.
File signatures for Google Cloud Platform credentials
Content signatures similar to trufflehog.
Dependency management with dep

Changed

Skip expensive signature checking for image extensions and files in node_modules and other package directories

2.0.0-beta - 2018-06-08

Added

Total rewrite of Gitrob in Golang
Find interesting files in history down to a default (and configurable) depth of 500 commits
Hexdump view for binary files
Saving and loading of session files for easy sharing

Removed

All the stupid Rubygems with native extensions
PostgreSQL dependency
Messy assessment comparison feature
User overview
Repository overview