build(CI): Bump trufflesecurity/trufflehog from 3.82.6 to 3.82.7 (#747) · aws/c3r@d7d349f

Commit

build(CI): Bump trufflesecurity/trufflehog from 3.82.6 to 3.82.7 (#747)
Bumps
[trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog)
from 3.82.6 to 3.82.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/trufflesecurity/trufflehog/releases">trufflesecurity/trufflehog's
releases</a>.</em></p>
<blockquote>
<h2>v3.82.7</h2>
<h2>What's Changed</h2>
<ul>
<li>[feat] - Add Generic Hasher Interface with Blake2b Implementation by
<a href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3337">trufflesecurity/trufflehog#3337</a></li>
<li>Enhanced the eraser detector to handle new status code by <a
href="https://github.com/kashifkhan0771"><code>@kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3342">trufflesecurity/trufflehog#3342</a></li>
<li>disable secret scans for community PRs by <a
href="https://github.com/zricethezav"><code>@zricethezav</code></a> in
<a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3343">trufflesecurity/trufflehog#3343</a></li>
<li>[chore] - update Go version to 1.23.0 by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3340">trufflesecurity/trufflehog#3340</a></li>
<li>[fix] - Use Parent Context in Azure Detector by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3346">trufflesecurity/trufflehog#3346</a></li>
<li>[bug] - Recover From Panic During Archive Handling by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3348">trufflesecurity/trufflehog#3348</a></li>
<li>[feat] - Add SizedLRU Cache by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3344">trufflesecurity/trufflehog#3344</a></li>
<li>Fixed github oauth2 token detector by <a
href="https://github.com/kashifkhan0771"><code>@kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3353">trufflesecurity/trufflehog#3353</a></li>
<li>[chore] - Rename memory cache package to 'simple' for clarity by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3352">trufflesecurity/trufflehog#3352</a></li>
<li>fix(deps): update module go.mongodb.org/mongo-driver to v1.17.1 by
<a href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3357">trufflesecurity/trufflehog#3357</a></li>
<li>[fix] - remove size check by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3351">trufflesecurity/trufflehog#3351</a></li>
<li>Added Pattern test cases for detectors by <a
href="https://github.com/kashifkhan0771"><code>@kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3354">trufflesecurity/trufflehog#3354</a></li>
<li>fix(deps): update module github.com/jedib0t/go-pretty/v6 to v6.6.0
by <a href="https://github.com/renovate"><code>@renovate</code></a> in
<a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3361">trufflesecurity/trufflehog#3361</a></li>
<li>Updated Cosign Install URL by <a
href="https://github.com/bhodii"><code>@bhodii</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3364">trufflesecurity/trufflehog#3364</a></li>
<li>fix(deps): update module github.com/snowflakedb/gosnowflake to
v1.11.2 by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3363">trufflesecurity/trufflehog#3363</a></li>
<li>[refactor] - Decouple Metrics From Cache Implementation by <a
href="https://github.com/ahrav"><code>@ahrav</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3355">trufflesecurity/trufflehog#3355</a></li>
<li>fix(deps): update module github.com/schollz/progressbar/v3 to
v3.16.1 by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3365">trufflesecurity/trufflehog#3365</a></li>
<li>fix(deps): update module cloud.google.com/go/storage to v1.44.0 by
<a href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3366">trufflesecurity/trufflehog#3366</a></li>
<li>chore(deps): update sigstore/cosign-installer action to v3.7.0 by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3368">trufflesecurity/trufflehog#3368</a></li>
<li>fix(deps): update module golang.org/x/crypto to v0.28.0 by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3372">trufflesecurity/trufflehog#3372</a></li>
<li>fix(deps): update module golang.org/x/net to v0.30.0 by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3373">trufflesecurity/trufflehog#3373</a></li>
<li>fix(deps): update golang.org/x/exp digest to 225e2ab by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3371">trufflesecurity/trufflehog#3371</a></li>
<li>fix(deps): update module github.com/xanzy/go-gitlab to v0.110.0 by
<a href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3376">trufflesecurity/trufflehog#3376</a></li>
<li>improved the agora detector by <a
href="https://github.com/kashifkhan0771"><code>@kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3360">trufflesecurity/trufflehog#3360</a></li>
<li>Added Cisco Meraki API Key detector by <a
href="https://github.com/kashifkhan0771"><code>@kashifkhan0771</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3367">trufflesecurity/trufflehog#3367</a></li>
<li>fix(deps): update module google.golang.org/protobuf to v1.35.1 by <a
href="https://github.com/renovate"><code>@renovate</code></a> in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3382">trufflesecurity/trufflehog#3382</a></li>
<li>Fix git binary handling and add a smoke test by <a
href="https://github.com/dustin-decker"><code>@dustin-decker</code></a>
in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3379">trufflesecurity/trufflehog#3379</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/bhodii"><code>@bhodii</code></a> made
their first contribution in <a
href="https://redirect.github.com/trufflesecurity/trufflehog/pull/3364">trufflesecurity/trufflehog#3364</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/trufflesecurity/trufflehog/compare/v3.82.6...v3.82.7">https://github.com/trufflesecurity/trufflehog/compare/v3.82.6...v3.82.7</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/59c615a5e9001224d1dd4049f92f046ca620498c"><code>59c615a</code></a>
Fix git binary handling and add a smoke test (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3379">#3379</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/57802abf5276961426482ace808057016c714958"><code>57802ab</code></a>
fix(deps): update module google.golang.org/protobuf to v1.35.1 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3382">#3382</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/ce5da505a72d2d9a7fed0e825bb312ae24ef3d74"><code>ce5da50</code></a>
Added Cisco Meraki API Key detector (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3367">#3367</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/23e8ae4a1e36dc591d3860a3d27a630f20ea5c56"><code>23e8ae4</code></a>
improved the agora detector (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3360">#3360</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/40fdf440734931798e79c21e6dd06315aa43f8c4"><code>40fdf44</code></a>
fix(deps): update module github.com/xanzy/go-gitlab to v0.110.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3376">#3376</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/a35bea0c496dcd72f15816e1339129b8af7bc0b7"><code>a35bea0</code></a>
fix(deps): update golang.org/x/exp digest to 225e2ab (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3371">#3371</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/99dd43c9505e9583cb090a7d5012cc6b5c9b0f80"><code>99dd43c</code></a>
fix(deps): update module golang.org/x/net to v0.30.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3373">#3373</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/a9807139841276f19d61271f02fc1c0657ee3bbf"><code>a980713</code></a>
fix(deps): update module golang.org/x/crypto to v0.28.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3372">#3372</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/d590129c83df084247c0465a9482dcfff17af53f"><code>d590129</code></a>
chore(deps): update sigstore/cosign-installer action to v3.7.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3368">#3368</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/8b360ca63d7b294b451762bde6c861d5129023b2"><code>8b360ca</code></a>
fix(deps): update module cloud.google.com/go/storage to v1.44.0 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3366">#3366</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/trufflesecurity/trufflehog/compare/v3.82.6...v3.82.7">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=trufflesecurity/trufflehog&package-manager=github_actions&previous-version=3.82.6&new-version=3.82.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Loading branch information
dependabot[bot] authored Oct 8, 2024
1 parent 9fe5aab commit d7d349f
.github/workflows/trufflehog.yml
-Original file line number
+Diff line change
@@ Expand Up / @@ -9,7 +9,7 @@ jobs: @@
             with:
               fetch-depth: 0
           - name: TruffleHog OSS
-            uses: trufflesecurity/[email protected].6
+            uses: trufflesecurity/[email protected].7
             with:
               path: ./
               base: ${{ github.event.repository.default_branch }}
@@ Expand Down @@
0 comments on commit `d7d349f`

Please sign in to comment.
Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Commit

There are no files selected for viewing

0 comments on commit `d7d349f`

Commit

There are no files selected for viewing

0 comments on commit d7d349f

0 comments on commit `d7d349f`
