v3.82.3

What's Changed

• fix(deps): update golang.org/x/exp digest to 701f63a by @renovate in #3291
• Instrument GitHub source with a ChunkReporter by @mcastorina in #3296
• fix(deps): update module cloud.google.com/go/secretmanager to v1.14.1 by @renovate in #3301
• fix(deps): update module github.com/prometheus/client_golang to v1.20.4 by @renovate in #3303
• [analyze] Add client filter to detect successful unsafe HTTP requests by @mcastorina in #3305
• Update GitHub enumeration to report unique filtered values by @mcastorina in #3292
• fix(deps): update module github.com/elastic/go-elasticsearch/v8 to v8.15.0 by @renovate in #3309
• fix(deps): update module github.com/getsentry/sentry-go to v0.29.0 by @renovate in #3310
• fix(deps): update module github.com/schollz/progressbar/v3 to v3.15.0 by @renovate in #3311
• fix(deps): update module github.com/sendgrid/sendgrid-go to v3.16.0+incompatible by @renovate in #3312
• [fix] - Add Size Method to BufferedReadSeeker and Refactor Context Timeout Handling in HandleFile by @ahrav in #3307
• fix(deps): update module github.com/snowflakedb/gosnowflake to v1.11.1 by @renovate in #3313
• Fix out of bounds panic on openai detector by @zricethezav in #3316
• fix(deps): update module github.com/schollz/progressbar/v3 to v3.16.0 by @renovate in #3315
• fix(deps): update module github.com/wasilibs/go-re2 to v1.7.0 by @renovate in #3317
• Implement SourceUnitEnumChunker for GitHub by @mcastorina in #3298
• [Analyzer] Test and generated permissions for HuggingFace, Square & Stripe by @abmussani in #3294
• fix(deps): update module github.com/xanzy/go-gitlab to v0.109.0 by @renovate in #3318
• Improve MongoDB connection string matching by @rgmz in #1550
• [bug] - Improve seekability check for stdout pipes in BufferedReadSeeker by @ahrav in #3189
• fix(deps): update module go.mongodb.org/mongo-driver to v1.17.0 by @renovate in #3319
• fix(deps): update module go.uber.org/automaxprocs to v1.6.0 by @renovate in #3321
• fix(deps): update module golang.org/x/oauth2 to v0.23.0 by @renovate in #3322

Full Changelog: v3.82.2...v3.82.3

v3.82.2

What's Changed

• fix(deps): update module github.com/prometheus/client_golang to v1.20.3 by @renovate in #3279
• Instrument GitHub source with a UnitReporter by @mcastorina in #3284
• [analyze] Add Analyzer for MySQL by @abmussani in #3193
• [analyze] Add Analyzer for Mailgun by @abmussani in #3206
• [analyze] Add analyzer interface for Shopify by @abmussani in #3226
• Fix slice initialization error by @tiaoxizhan in #3293
• Fix GitHub analyzer panic on empty organization name by @mcastorina in #3295
• Add user agent suffix feature flag by @dustin-decker in #3297

New Contributors

• @tiaoxizhan made their first contribution in #3293

Full Changelog: v3.82.1...v3.82.2

v3.82.1

What's Changed

• adding pypi v1 support by @dylanTruffle in #3289

Full Changelog: v3.82.0...v3.82.1

v3.82.0

What's Changed

• Add Robinhood Crypto detector by @shreyas-sriram in #3254
• Add huggingface tui config by @hxnyk in #3060
• Add central feature flags by @dustin-decker in #3264
• Reduce high freq keywords by @dustin-decker in #3265
• add rotation links by @0x1 in #3257
• Make worker multipliers configurable by @dustin-decker in #3267
• Add Sentry protobufs by @camgunz in #3263
• [analyze] Add analyzer for Postman by @abmussani in #3180
• [analyze] Add Analyzer for Opsgenie by @abmussani in #3181
• [analyze] Add Analyzer for Sendgrid by @abmussani in #3174
• [analyze] Add analyze interface for Bitbucket by @abmussani in #3224
• [analyze] Add Analyze interface for Mailchimp by @abmussani in #3225
• [analyze] Improve SquareUp analyzer and Implemented test by @abmussani in #3231
• [analyze] Add Analyzer for Slack by @abmussani in #3207
• [analyze] Add Analyzer for Asana by @abmussani in #3139
• [analyze] Add Analyzer for SourceGraph by @abmussani in #3173
• [analyze] Add Analyzer for Postgres by @abmussani in #3192
• [chore] Skip analyzer tests in CI by @mcastorina in #3270
• fix(deps): update golang.org/x/exp digest to e7e105d by @renovate in #3202
• fix(deps): update module github.com/felixge/fgprof to v0.9.5 by @renovate in #3277
• GitHub source logger clean up by @LaraCroftDev in #3269
• Add detector for Nvidia NGC Personal Keys by @dtrops in #3280
• fix(git): config normalization for git sources by @beeb in #3278
• JiraToken Detector fix by @ankushgoel27 in #3061
• [chore] - remove unused method and function by @ahrav in #3089
• update aha keyword by @zricethezav in #3281
• Clarify "no decoder found for chunk" log message by @rgmz in #3001
• feature flag additional refs by @dustin-decker in #3282
• adding pypi detector by @dylanTruffle in #3287

New Contributors

• @dtrops made their first contribution in #3280
• @beeb made their first contribution in #3278

Full Changelog: v3.81.10...v3.82.0

v3.81.10

What's Changed

• fix(deps): update module github.com/sendgrid/sendgrid-go to v3.15.0+incompatible by @renovate in #3214
• fix(deps): update module github.com/charmbracelet/bubbletea to v0.27.0 by @renovate in #3229
• chore(deps): update golang docker tag to v1.23 by @renovate in #3228
• fix(deps): update module github.com/prometheus/client_golang to v1.20.1 by @renovate in #3236
• fix(deps): update module google.golang.org/api to v0.192.0 by @renovate in #3237
• fix(deps): update module google.golang.org/api to v0.193.0 by @renovate in #3238
• fix(deps): update testcontainers-go monorepo to v0.33.0 by @renovate in #3239
• fix(deps): update module cloud.google.com/go/secretmanager to v1.14.0 by @renovate in #3240
• Customize results cleaning (using smuggled interface) by @rosecodym in #3235
• Skip filtration for targeted scans by @rosecodym in #3243
• Strip leading +/- from GitHub target diffs by @rosecodym in #3244
• Th 899 postman panic issue by @LaraCroftDev in #3245
• Update rotation guide link for teams by @hxnyk in #3248
• Download files when reverifying by @rosecodym in #3252
• [chore] - Update buffer by @ahrav in #3255

New Contributors

• @LaraCroftDev made their first contribution in #3245

Full Changelog: v3.81.9...v3.81.10

v3.81.9

What's Changed

• Capture decoding time metric by @rosecodym in #3209
• fix(deps): update module cloud.google.com/go/secretmanager to v1.13.6 by @renovate in #3208
• remove two letter keyword by @0x1 in #3210
• Add metrics for command invocation by @mcastorina in #3185
• chore(deps): update sigstore/cosign-installer action to v3.6.0 by @renovate in #3211
• [analyze] Capture the hierarchy of GitHub permissions by @mcastorina in #3127
• [analyze] Fix GitHub token expiration parsing by @mcastorina in #3205
• [chore] Fix lint errors by @mcastorina in #3218
• [chore] Ignore analyzer implementation tests in test-community by @mcastorina in #3219
• Support for kebab case and dot notation in permission generation tool by @abmussani in #3222
• Improve domain / url handling in detectors by @dustin-decker in #3221

Full Changelog: v3.81.8...v3.81.9

v3.81.8

What's Changed

• [analyze] Deduplicate finegrained GitHub permissions by @mcastorina in #3196
• fix(deps): update module golang.org/x/net to v0.28.0 by @renovate in #3187
• [analyze] Fix double-print in postgres analyzer by @mcastorina in #3199
• fix(deps): update module go.mongodb.org/mongo-driver to v1.16.1 by @renovate in #3197
• Log when a detector ignores the timeout by @rosecodym in #3201
• [bug] - Correctly Handle Large Files in BufferedReadSeeker by @ahrav in #3203
• fix(deps): update module github.com/google/go-containerregistry to v0.20.2 by @renovate in #3184

Full Changelog: v3.81.7...v3.81.8

v3.81.7

What's Changed

• fix(deps): update module golang.org/x/crypto to v0.26.0 by @renovate in #3182
• fix(deps): update module golang.org/x/text to v0.17.0 - autoclosed by @renovate in #3183
• [analyze] Add analyze option to main TUI and unhide subcommand by @mcastorina in #3186
• Analyzer capitalization by @hxnyk in #3188
• [analyze] Bandaid solution for occasional slow startups by @mcastorina in #3191
• [analyze] Add basic section to README by @mcastorina in #3190
• Fixes for a few finegrained token issues by @dustin-decker in #3194

Full Changelog: v3.81.6...v3.81.7

v3.81.6

What's Changed

• Auth GitHub in Init by @rosecodym in #3131
• fix(deps): update module github.com/envoyproxy/protoc-gen-validate to v1.1.0 by @renovate in #3176
• Analyze TUI by @mcastorina in #3172
• [analyze] Separate SID from token in twilio analyzer by @mcastorina in #3177
• [chore] Use custom HTTP client in sendgrid analyzer by @mcastorina in #3178
• Improve finegrained token support by @dustin-decker in #3179

Full Changelog: v3.81.5...v3.81.6

v3.81.5

What's Changed

• Update README.md for github experimental by @joeleonjr in #3160
• fix(deps): update module github.com/schollz/progressbar/v3 to v3.14.6 by @renovate in #3158
• [analyze] Fix off-by-one error in generated data structures by @mcastorina in #3162
• [bug] - Create a new context with timeout per request by @ahrav in #3163
• [analyze] Use permission enum values in openai analyzer by @mcastorina in #3165
• update pattern by @dustin-decker in #3167
• Update Zulip detector by @rgmz in #2897
• fix(deps): update module golang.org/x/oauth2 to v0.22.0 by @renovate in #3168
• fix(deps): update module golang.org/x/sync to v0.8.0 by @renovate in #3169
• fix(deps): update github.com/tailscale/depaware digest to 585336c by @renovate in #3166
• Change log verbosity for detection errors by @dustin-decker in #3171

Full Changelog: v3.81.4...v3.81.5