gitleaks/CHANGELOG.md

CHANGELOG

2.1.0

• --commit does not iterate on commit history. Now it directly accesses the commit object. https://github.com/zricethezav/gitleaks/pull/236
• Fixing logging local repo path https://github.com/zricethezav/gitleaks/pull/204
• Better README examples https://github.com/zricethezav/gitleaks/pull/202
• Better logging on Windows https://github.com/zricethezav/gitleaks/pull/230
• Better error messaging
• Bunch new default rules https://github.com/zricethezav/gitleaks/pull/231 https://github.com/zricethezav/gitleaks/pull/241
• --repo-config works on orgs and users now https://github.com/zricethezav/gitleaks/pull/239
• Proper exit codes https://github.com/zricethezav/gitleaks/pull/244
• Gitlab Token support https://github.com/zricethezav/gitleaks/pull/184

2.0.0

• rules introduced in the gitleaks configurationn
• removing --entropy option
• removing --single-search option

1.25.1

• Fixing #188

1.25.0

• Pretty big refactor, see src directory
• Dropping dep for go modules
• Separating email and author
• Readding branch support with --branch=

1.24.0

• --commit now allows users to target a specific commit to audit
• --commit-stop audit all commits up to and including what is specified at --commit-stop
• Updated go-git version to 4.9.1

1.23.0

-- --repo-config allows users to load configs specific to a repo target

1.22.0

• context inclusion for redactions
• noise reduction for entropy signals

1.21.0

• added support for cloning repositories using github api
• auditing PRs now allows for whitelisting files

1.20.0

• adding gitlab user and group support

1.19.3

• memoizing root commit
• only count commits (not commit + parent) for total commit number

1.19.2

• fixed a bug where gitleaks was skipping the initial commit
• commit cache now checks curr commit + parent commit hash
• removed newlines from commit message

1.19.1

• mistakenly removed default whitelist files

1.19.0

• removed --all-refs. By default gitleaks now scans all branches, remote and local.
• added commit memoizer to prevent duplicate commit audits
• removed branch whitelist
• removed branch from report as a commit is an object independent of branch
• Better regexes for facebook, github, twitter (no more unbounded wildcards)

1.18.0

• fixing slack token
• defaulting to single thread process
• --max-go= --> --threads=
• guarding --threads= > max threads available (you aint gettin any more performance)

1.17.0

• Default regex added to search: slack, telegram.
• Default whitelisting: bin, doc, jpeg, gif

1.16.1

• Fixing default ssh auth logic

1.16.0

• Better commit coverage. Now iterates through each commit in git log and generates a patch with each commit's parent.
• Removing the need for --private/-p option. Instead gitleaks will determine if the repo is private or not.

1.15.0

• Whitelist repos use regex now
• Whitelist repo check before clone

1.14.0

• Entropy Range support in gitleaks config

1.13.0

• Github PR support
• Github has its own go file. All other services, bitbucket, gitlab, etc should follow this convention

1.12.1

• Show program usage when no arguments are provided
• Exit program after the -h or --help options are used

1.12.0

• removing --csv option
• --report option now requires .json or .csv in filename
• adding total time to audit in logs

1.11.1

• fix commit whitelist logic

1.11.0

• Commit depth option
• Commit stats output

1.10.0

• Add entropy option

1.9.0

• exclude fork option

1.8.0

• whitelist repos
• sample config option

1.7.3

• style points

1.7.2

• Fixing dangling goroutines, removing channel messaging

1.7.1

• Fixing bug where single repos were not being audited

1.7.0

• Exit code == 2 on error
• Cleaning up some logs
• Removing some unreachable code

1.6.1

• Recover from panic when diffing

1.6.0

• Default maximum goroutines spawned is number of cores your CPU run with. See benchmarks in wiki.
• Cleanup after each repo audit for organizations rather than waiting for the entire organization to complete. Eliminates the risk of running out of disk space.

1.5.0

• Support for CSV reporting
• Refactoring Github user/owner audits

1.4.0

• Support for single commit repos
• Bumped go-git version from 4.5.0 to 4.7.0

1.3.0

• Target specific branch

1.2.1

• Check errors when generating commit patch

1.2.0

• Added support for providing an alternate GitHub URL to support scanning GitHub Enterprise repositories

1.1.2

• Added version option
• Introduced changelog

1.1.1

• Fixed commit patch order
• Updated Readme

1.1.0

• Fixed Twitter typo
• Fixed sample docker command
• Default clone option to "in-memory"
• Added clone option for "disk"
• Updated Makefile

1.0.0

• Rewrite, see Readme.md: https://github.com/zricethezav/gitleaks/releases/tag/v1.0.0

0.4.0

• Added support for external regexes

0.3.0

• Added local scan
• Meaningful exit codes
• Timestamped logs
• Refactored for some maintainability

0.2.0

• Additionally regex checking
• $HOME/.gitleaks/ directory for clones and reports
• Pagination for Org/User list... no more partial repo lists
• Persistent repos for Orgs and Users (no more re-cloning)
• Updated README
• Multi-staged Docker build
• Travis CI

0.1.0

• full git history search
• regex/entropy checks
• report generation