Richard Gomez
Richard Gomez
### Description: Similar to #2922, the goal of this change is to provide clear and actionable information if a detection is impacted. The problem is currently that "verification overlap" doesn't...
### Description: This is an alternative implementation to #2918, with two main advantages: 1. It only requires the data to be downloaded and parsed/chunked once 2. It provides specific context...
### Description: This creates an experimental flag to disable SSL verification for detectors. This is useful in corporate environments where [MITMing SSL traffic is common](https://security.stackexchange.com/questions/107542/is-it-common-practice-for-companies-to-mitm-https-traffic) and certificates are replaced with...
### Description: This makes the Zulip detector tri-state and adds some additional logic to prevent false positives. Previously, [this file](https://github.com/zulip/zulip/blob/5df0e7b857b37beb2999cf94606c02c30310f08c/zulip/templates/zerver/integrations.html#L182) was triggered a false "verified" result. ``` ✅ Found verified...
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version 3.78.0 ### Trace Output ```sh $ ./trufflehog/trufflehog filesystem Conifer_Desktop.spm 🐷🔑🐷 TruffleHog. Unearth your secrets. 🐷🔑🐷 2024-06-06T18:54:16-04:00 info-0 trufflehog running source...
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version 3.78.0 ### Trace Output ``` 2024-06-07T10:23:31-04:00 info-0 trufflehog running source {"source_manager_worker_id": "43W0T", "with_units": true} 2024-06-07T10:23:31-04:00 info-0 trufflehog archiver.Decompressor {"source_manager_worker_id": "43W0T",...
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version https://github.com/trufflesecurity/trufflehog/commit/4e21590cbe895b0796acec8d3204f9f9013d9d5e ### Description The optimizations introduced in #2812 don't work as expected when multiple secrets are in the same chunk....
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ## Description As shown by @bplaxco in https://github.com/trufflesecurity/trufflehog/pull/1918#discussion_r1624710716, the number of commits scanned can be a useful metric to determine the correctness of...
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version ### Trace Output ```sh ./trufflehog filesystem /tmp/ClamAV-srcflat.tar.gz 🐷🔑🐷 TruffleHog. Unearth your secrets. 🐷🔑🐷 2024-06-06T19:11:05-04:00 info-0 trufflehog running source {"source_manager_worker_id": "6Ntve",...
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version 3.78.0 ### Trace Output ```sh ./trufflehog/trufflehog filesystem BitcoinTemplate.dmg 🐷🔑🐷 TruffleHog. Unearth your secrets. 🐷🔑🐷 2024-06-06T18:58:12-04:00 info-0 trufflehog running source {"source_manager_worker_id":...