LBP
/
gitleaks
miroir de https://github.com/gitleaks/gitleaks.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723
							<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Gitleaks Security Findings Report</title>
    <style>
        :root {
          --primary-color: #000080;
          --primary-color-rgb: 0, 0, 128;
          --primary-dark: #000066;
          --primary-light: #0000aa;
          --secondary-color: #c0c0c0;
          --surface-color: #c0c0c0;
          --border-color: #808080;
          --text-color: #000000;
          --text-light: #404040;
          --text-inverse: #ffffff;
          --error-color: #ff0000;
          --warning-color: #ffaa00;
          --success-color: #008000;
          --highlight-color: rgba(0, 0, 128, 0.2);
          --highlight-secret: rgba(255, 0, 0, 0.2);
          --shadow: 2px 2px 0 rgba(0, 0, 0, 0.5);
          --radius: 0;
          --font-mono: 'Courier New', monospace;
          --font-main: 'MS Sans Serif', 'Tahoma', sans-serif;
        }

        * {
          margin: 0;
          padding: 0;
          box-sizing: border-box;
        }

        html, body {
          height: 100%;
          font-family: var(--font-main);
          font-size: 16px;
          line-height: 1.5;
          color: var(--text-color);
          background-color: #008080;
          background-image: url("data:image/svg+xml,%3Csvg width='40' height='40' viewBox='0 0 40 40' xmlns='http://www.w3.org/2000/svg'%3E%3Cpath d='M0 0h40v40H0V0zm20 10a10 10 0 1 1 0 20 10 10 0 0 1 0-20z' fill='%23009090' fill-opacity='0.2' fill-rule='evenodd'/%3E%3C/svg%3E");
        }

        .app-container {
          display: flex;
          flex-direction: column;
          height: 100%;
          max-width: 100%;
          overflow: hidden;
          border: 2px outset #d4d0c8;
          box-shadow: 2px 2px 10px rgba(0, 0, 0, 0.3);
        }

        .app-header {
          height: 28px;
          background: linear-gradient(to right, #000080, #1084d0);
          color: var(--text-inverse);
          display: flex;
          align-items: center;
          justify-content: space-between;
          padding: 1px 2px;
          flex-shrink: 0;
          box-shadow: var(--shadow);
          z-index: 10;
          border-bottom: 2px outset #ffffff;
        }

        .logo h1 {
          font-size: 14px;
          font-weight: bold;
          margin: 0;
          padding: 4px 2px;
          text-shadow: 1px 1px 0 rgba(0, 0, 0, 0.5);
        }

        .btn {
          display: inline-flex;
          align-items: center;
          justify-content: center;
          background-color: #c0c0c0;
          color: #000000;
          border: 2px outset #d4d0c8;
          border-radius: 0;
          font-size: 12px;
          padding: 3px 6px;
          box-shadow: 1px 1px 0 #ffffff inset, -1px -1px 0 #808080 inset;
          cursor: pointer;
          transition: background-color 0.2s, color 0.2s;
          font-family: var(--font-main);
        }

        .btn:active {
          border: 2px inset #d4d0c8;
          box-shadow: 1px 1px 0 #808080 inset, -1px -1px 0 #ffffff inset;
          padding: 4px 5px 2px 7px;
        }

        .btn-primary {
          background-color: var(--primary-color);
          color: var(--text-inverse);
        }

        .btn-primary:hover {
          background-color: var(--primary-dark);
        }

        .btn-sm {
          padding: 1px 3px;
          font-size: 0.75rem;
        }

        .app-main {
          flex: 1;
          overflow: auto;
          padding: 1.5rem;
        }

        .report-info {
          margin-bottom: 1.5rem;
          padding: 8px;
          background-color: #c0c0c0;
          border: 2px inset #d4d0c8;
        }

        .report-date {
          font-size: 0.875rem;
          color: var(--text-light);
        }

        .report-stats {
          display: flex;
          gap: 1.5rem;
          margin-top: 1rem;
          flex-wrap: wrap;
        }

        .stat-item {
          display: flex;
          flex-direction: column;
          gap: 0.25rem;
        }

        .stat-value {
          font-size: 1.25rem;
          font-weight: 600;
        }

        .stat-label {
          font-size: 0.875rem;
          color: var(--text-light);
        }

        .table-wrapper {
          overflow-x: auto;
          border: 2px inset #d4d0c8;
        }

        .findings-table {
          width: 100%;
          border-collapse: collapse;
          font-size: 0.875rem;
        }

        .findings-table th {
          background-color: #000080;
          color: white;
          font-weight: bold;
          font-size: 12px;
          padding: 4px 6px;
          border: 1px solid #808080;
          position: sticky;
          top: 0;
          z-index: 1;
        }

        /* Ensure table cells don't expand too much */
        .findings-table td {
          background-color: #ffffff;
          border: 1px solid #d4d0c8;
          font-size: 12px;
          padding: 4px 6px;
          vertical-align: top;
          max-width: 300px; /* Limit width of all cells */
          overflow-wrap: break-word;
        }

        .findings-table tr:hover td {
          background-color: #e6e6e6;
        }

        .findings-table th:nth-child(1) { width: 12%; } /* Rule */
        .findings-table th:nth-child(2) { width: 20%; } /* File */
        .findings-table th:nth-child(3) { width: 25%; } /* Description */
        .findings-table th:nth-child(4) { width: 20%; } /* Secret */
        .findings-table th:nth-child(5) { width: 23%; } /* Metadata */

        .secret-container {
          position: relative;
        }

        .match-toggle {
          display: inline-block;
          margin-top: 0.5rem;
          background-color: #c0c0c0;
          border: 2px outset #d4d0c8;
          color: #000000;
          font-size: 10px;
          padding: 1px 3px;
          cursor: pointer;
        }

        .match-toggle:active {
          border: 2px inset #d4d0c8;
        }

        .hidden {
          display: none !important;
        }

        .secret-match {
          font-family: var(--font-mono);
          font-size: 0.875rem;
          word-break: break-all;
          white-space: pre-wrap;
          display: block;
          background-color: #ffffff;
          border: 1px solid #808080;
          padding: 0.5rem;
          overflow-x: auto;
        }

        .tag-list {
          display: flex;
          gap: 0.25rem;
          flex-wrap: wrap;
        }

        .tag {
          display: inline-block;
          background-color: #000080;
          border-radius: 0;
          padding: 1px 3px;
          font-size: 10px;
          color: var(--text-inverse);
        }

        .meta-row {
          display: grid;
          grid-template-columns: repeat(auto-fill, minmax(200px, 1fr));
          gap: 0.5rem;
          margin-top: 0.5rem;
          font-size: 0.75rem;
          color: var(--text-light);
        }

        .meta-item {
          display: flex;
          align-items: center;
          gap: 0.25rem;
        }

        .meta-label {
          font-weight: 500;
        }

        .meta-value {
          font-family: var(--font-mono);
          word-break: break-all;
        }

        .code-preview {
          position: relative;
          font-family: var(--font-mono);
          font-size: 0.875rem;
          background-color: #ffffff;
          padding: 0.5rem;
          border: 1px solid #808080;
          overflow-x: auto;
          margin-top: 0.5rem;
          white-space: pre-wrap;
          word-break: break-all;
        }

        .filters {
          margin-bottom: 12px;
          background-color: #c0c0c0;
          padding: 8px;
          border: 2px outset #d4d0c8;
          display: flex;
          gap: 1rem;
          flex-wrap: wrap;
        }

        .filter-group {
          display: flex;
          align-items: center;
          gap: 0.5rem;
          margin-bottom: 4px;
        }

        .filter-label {
          font-size: 12px;
          font-weight: normal;
        }

        .filter-input {
          background-color: #ffffff;
          border: 2px inset #d4d0c8;
          padding: 3px 4px;
          font-size: 12px;
          font-family: var(--font-main);
        }

        .app-footer {
          background-color: #c0c0c0;
          border-top: 2px outset #d4d0c8;
          font-size: 11px;
          padding: 3px 8px;
          height: 24px;
          display: flex;
          align-items: center;
          justify-content: space-between;
          flex-shrink: 0;
        }

        .description-toggle {
          cursor: pointer;
          color: var(--primary-color);
          font-size: 0.875rem;
          margin-left: 0.5rem;
          display: inline-flex;
          align-items: center;
          justify-content: center;
          width: 16px;
          height: 16px;
          background-color: #c0c0c0;
          border: 1px outset #d4d0c8;
          font-size: 10px;
          line-height: 14px;
          vertical-align: middle;
        }

        .description-toggle:hover {
          background-color: var(--primary-light);
          color: var(--text-inverse);
        }

        .description-expanded {
          white-space: normal;
        }

        .description-collapsed {
          white-space: nowrap;
          overflow: hidden;
          text-overflow: ellipsis;
          max-width: 250px;
          display: inline-block;
        }

        .commit-link {
          color: var(--primary-color);
          text-decoration: none;
        }

        .commit-link:hover {
          text-decoration: underline;
        }
        
        /* File path styling */
        .file-path-container {
          max-width: 100%;
        }
        
        .file-path {
          display: inline-block;
          max-width: 100%;
          word-wrap: break-word;
          word-break: break-all;
        }

        .match-content {
          font-family: var(--font-mono);
          font-size: 0.875rem;
          word-break: break-all;
          white-space: pre-wrap;
          display: block;
          background-color: #ffffff;
          border: 1px solid #808080;
          padding: 0.5rem;
          margin-top: 0.5rem;
          max-height: 300px;
          overflow-y: auto;
        }

        @media (max-width: 768px) {
          .app-header {
            padding: 0 1rem;
          }

          .app-main {
            padding: 1rem;
          }

          .report-stats {
            flex-direction: column;
            gap: 0.75rem;
          }

          .filters {
            flex-direction: column;
            gap: 0.75rem;
          }

          .app-footer {
            flex-direction: column;
            height: auto;
            padding: 0.75rem 1rem;
            gap: 0.5rem;
            justify-content: center;
            text-align: center;
          }
        }
    </style>
</head>
<body>
    <div class="app-container">
        <header class="app-header">
            <div class="logo">
                <h1>Gitleaks Security Findings</h1>
            </div>
        </header>

        <main class="app-main">
            <div class="report-info">
                <h2>Security Scan Report</h2>
                <p class="report-date">Generated on {{now | date "Jan 02, 2006 15:04:05 MST"}}</p>

                <div class="report-stats">
                    <div class="stat-item">
                        <span class="stat-value">{{len .}}</span>
                        <span class="stat-label">Total Findings</span>
                    </div>

                    <div class="stat-item">
                        <span class="stat-value" id="filesCount">-</span>
                        <span class="stat-label">Files Affected</span>
                    </div>

                    <div class="stat-item">
                        <span class="stat-value" id="rulesCount">-</span>
                        <span class="stat-label">Unique Rules Triggered</span>
                    </div>

                    <div class="stat-item" id="scanModeContainer">
                        <span class="stat-value" id="scanMode">-</span>
                        <span class="stat-label">Scan Mode</span>
                    </div>
                </div>
            </div>

            <div class="filters">
                <div class="filter-group">
                    <label class="filter-label" for="filterRule">Filter by Rule:</label>
                    <select class="filter-input" id="filterRule">
                        <option value="all">All Rules</option>
                        <!-- Rule options will be populated by JavaScript -->
                    </select>
                </div>

                <div class="filter-group">
                    <label class="filter-label" for="filterFile">Filter by File:</label>
                    <input type="text" class="filter-input" id="filterFile" placeholder="Enter filename...">
                </div>

                <div class="filter-group">
                    <button class="btn btn-primary btn-sm" id="resetFilters">Reset Filters</button>
                </div>
            </div>

            <div class="table-wrapper">
                <table class="findings-table" id="findingsTable">
                    <thead>
                        <tr>
                            <th>Rule</th>
                            <th>File</th>
                            <th>Description</th>
                            <th>Secret</th>
                            <th>Metadata</th>
                        </tr>
                    </thead>
                    <tbody>
                        {{- range . }}
                        <tr data-rule="{{.RuleID}}" data-file="{{.File}}">
                            <td>{{.RuleID}}</td>
                            <td>
                                <div class="file-path-container">
                                    <span class="file-path" title="{{.File}}">{{.File}}</span>
                                </div>
                                <div class="tag-list">
                                    {{- range .Tags }}
                                    <span class="tag">{{.}}</span>
                                    {{- end}}
                                </div>
                                <div class="meta-row">
                                    <div class="meta-item">
                                        <span class="meta-label">Line:</span>
                                        <span class="meta-value">{{.StartLine}}</span>
                                    </div>
                                </div>
                            </td>
                            <td>
                                <span class="description-text">{{.Description}}</span>
                                <span class="description-toggle" title="Expand/Collapse">↕</span>
                            </td>
                            <td>
                                <div class="secret-container" data-secret="{{.Secret}}" data-match="{{.Match}}">
                                    <div class="secret-match">{{.Secret}}</div>
                                    <button type="button" class="match-toggle" title="Show/Hide Full Match Context">Show Context</button>
                                    <div class="match-content hidden" data-raw-match="{{.Match}}">{{.Match}}</div>
                                </div>
                            </td>
                            <td>
                                <div class="meta-row">
                                    <div class="meta-item">
                                        <span class="meta-label">Entropy:</span>
                                        <span class="meta-value">{{printf "%.2f" .Entropy}}</span>
                                    </div>
                                {{- if .Commit}}
                                    <div class="meta-item commit-info">
                                        <span class="meta-label">Commit:</span>
                                        <span class="meta-value">{{if gt (len .Commit) 7}}{{printf "%.7s" .Commit}}{{else}}{{.Commit}}{{end}}</span>
                                    </div>
                                    {{- if .Author}}
                                    <div class="meta-item commit-info">
                                        <span class="meta-label">Author:</span>
                                        <span class="meta-value">{{.Author}}</span>
                                    </div>
                                    {{- end}}
                                    {{- if .Date}}
                                    <div class="meta-item commit-info">
                                        <span class="meta-label">Date:</span>
                                        <span class="meta-value">{{.Date}}</span>
                                    </div>
                                    {{- end}}
                                    {{- if .Link}}
                                    <div class="meta-item commit-info">
                                        <span class="meta-label">Link:</span>
                                        <span class="meta-value"><a href="{{.Link}}" target="_blank" class="commit-link">View Commit</a></span>
                                    </div>
                                    {{- end}}
                                {{- else}}
                                    {{- if .Author}}
                                    <div class="meta-item">
                                        <span class="meta-label">Author:</span>
                                        <span class="meta-value">{{.Author}}</span>
                                    </div>
                                    {{- end}}
                                {{- end}}
                                </div>

                                {{- if not .Match}}
                                <div class="match-content" data-raw-match="">-</div>
                                {{- end}}
                            </td>
                        </tr>
                        {{- end }}
                    </tbody>
                </table>
            </div>
        </main>

        <footer class="app-footer">
            <div>Generated by Gitleaks</div>
            <div>Total Findings: <strong>{{len .}}</strong></div>
        </footer>
    </div>

    <script>
        // Process data to collect unique files and rules
        function processData() {
            const rows = document.querySelectorAll('#findingsTable tbody tr');
            const uniqueRules = new Set();
            const uniqueFiles = new Set();
            let isGitMode = false;

            if (rows.length > 0) {
                // Check if first finding has commit data to determine mode
                const firstRow = rows[0];
                const commitCells = firstRow.querySelectorAll('.commit-info');
                isGitMode = commitCells.length > 0 && commitCells[0].textContent.trim() !== '';
            }

            // Set scan mode
            document.getElementById('scanMode').textContent = isGitMode ? 'Git' : 'Directory';

            // Adjust UI based on mode
            if (isGitMode) {
                // Ensure commit info columns are visible for git mode
                document.querySelectorAll('.commit-info').forEach(el => {
                    el.style.display = 'block';
                });
            } else {
                // Hide commit-specific UI elements for directory mode
                document.querySelectorAll('.commit-info').forEach(el => {
                    el.style.display = 'none';
                });
            }

            rows.forEach(row => {
                uniqueRules.add(row.dataset.rule);
                uniqueFiles.add(row.dataset.file);
            });

            // Update stats
            document.getElementById('filesCount').textContent = uniqueFiles.size;
            document.getElementById('rulesCount').textContent = uniqueRules.size;

            // Populate rule filter dropdown
            const ruleFilter = document.getElementById('filterRule');
            const sortedRules = Array.from(uniqueRules).sort();
            sortedRules.forEach(rule => {
                const option = document.createElement('option');
                option.value = rule;
                option.textContent = rule;
                ruleFilter.appendChild(option);
            });
        }

        // Hide toggle button if match is same as secret
        function hideRedundantToggleButtons() {
            document.querySelectorAll('.secret-container').forEach(container => {
                const secret = container.getAttribute('data-secret');
                const match = container.getAttribute('data-match');
                const toggleButton = container.querySelector('.match-toggle');
                
                // If secret and match are the same, or if match is empty, hide the toggle button
                if ((secret && match && secret.trim() === match.trim()) || !match) {
                    if (toggleButton) {
                        toggleButton.style.display = 'none';
                    }
                }
            });
        }

        // Setup toggle buttons
        function setupToggleButtons() {
            document.querySelectorAll('.match-toggle').forEach(btn => {
                btn.addEventListener('click', function() {
                    const matchContent = this.nextElementSibling;
                    if (matchContent.classList.contains('hidden')) {
                        matchContent.classList.remove('hidden');
                        this.textContent = 'Hide Context';
                    } else {
                        matchContent.classList.add('hidden');
                        this.textContent = 'Show Context';
                    }
                });
            });

            // Setup description toggle
            document.querySelectorAll('.description-text').forEach(descriptionText => {
                const toggleBtn = descriptionText.nextElementSibling;
                if (!toggleBtn || !toggleBtn.classList.contains('description-toggle')) return;

                // Initial state: collapsed
                descriptionText.classList.add('description-collapsed');

                toggleBtn.addEventListener('click', () => {
                    if (descriptionText.classList.contains('description-collapsed')) {
                        descriptionText.classList.remove('description-collapsed');
                        descriptionText.classList.add('description-expanded');
                        toggleBtn.textContent = '↑';
                    } else {
                        descriptionText.classList.remove('description-expanded');
                        descriptionText.classList.add('description-collapsed');
                        toggleBtn.textContent = '↕';
                    }
                });
            });
        }

        // Filter functionality
        function applyFilters() {
            const ruleFilter = document.getElementById('filterRule').value;
            const fileFilter = document.getElementById('filterFile').value.toLowerCase();

            const rows = document.querySelectorAll('#findingsTable tbody tr');

            rows.forEach(row => {
                const ruleMatch = ruleFilter === 'all' || row.dataset.rule === ruleFilter;
                const fileMatch = fileFilter === '' || row.dataset.file.toLowerCase().includes(fileFilter);

                if (ruleMatch && fileMatch) {
                    row.style.display = '';
                } else {
                    row.style.display = 'none';
                }
            });

            // Update visible count
            const visibleFindings = document.querySelectorAll('#findingsTable tbody tr:not([style*="display: none"])').length;
            document.querySelector('.app-footer strong').textContent = visibleFindings;
        }

        document.getElementById('filterRule').addEventListener('change', applyFilters);
        document.getElementById('filterFile').addEventListener('input', applyFilters);
        document.getElementById('resetFilters').addEventListener('click', function() {
            document.getElementById('filterRule').value = 'all';
            document.getElementById('filterFile').value = '';
            applyFilters();
        });

        // Initialize
        document.addEventListener('DOMContentLoaded', function() {
            processData();
            hideRedundantToggleButtons(); // Hide toggle buttons for matching secrets
            setupToggleButtons();
        });
    </script>
</body>
</html>