trufflehog

trufflehog copied to clipboard

FTP detector ignores context timeout

4

> 2024-12-02T12:08:21-05:00 error trufflehog a detector ignored the context timeout {"detector_worker_id": "J5m7Y", "detector": {"type":"FTP"}, "timeout": 60, "link": "https://github.com/Samsung/ChromiumGStreamerBackend/blob/29c79f177ee954858d754c0faf6d237b4a8a7fbd/net/base/net_util_unittest.cc#L1"}}

rgmz

This seems to occur when a site is invalid/suspended.  ``` HTTP/2 404 {"errorMessage": "Site temporarily unavailable", "errorCode": "OTHER" ``` ---- ``` Found unverified result 🐷🔑❓ Verification issue: unexpected HTTP...

rgmz

URI detector should ignore `.local` TLD

1

[`.local` is a special TLD that is reserved for link-local networking](https://en.wikipedia.org/wiki/.local). The URI detector should ignore results for `.local` to be consistent with the existing behaviour of skipping local IPs....

rgmz

Unable to parse link to update line number: invalid control character in URL

3

## Observed Behaviour [This repository](https://github.com/ibm-developer-skills-network/jbbmo-Introduction-to-Git-and-GitHub/tree/b8938b6ea34624d7376285d1f47b577dac9e2619) has a file with a control character (`\r`) in the file name: ```diff diff --git "a/\rexit" "b/\rexit" new file mode 100644 index 0000000000..8e1cc8374c --- /dev/null...

rgmz

`--since-commit` does not include initial commit

3

### TruffleHog Version trufflehog 3.79 ### Trace Output ``` mkdir test cd test echo "super-secret" > secret.file git init git add . git commit -m "initial" git log -- get...

vacuumn

Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ## Description The ability to access the `File` and `Line` information from the Regex Detector example provided here: ``` Found unverified result 🐷🔑❓...

jjang3

I have been trying for a week now to get this to work as a proof-of-concept, but it does not seem to be worth my time right now. I want...

elastic-pangolin

Allow Keyword match with filename for custom detectors

1

## Description Currently a custom detector needs at least 1 keyword defined. The detector is only executed if the keyword appears in the text. This is usually enough for most...

vexvec

syslog source: chunking metadata error

1

Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version v3.88.2 ### Trace Output https://github.com/trufflesecurity/trufflehog/blob/b6b00bbe5460109a21287b6612bd68a86bf060c2/pkg/sources/syslog/syslog.go#L251-L285 ### Expected Behavior Syslog works without error ### Actual Behavior Panic while sending long messages...

nabokihms

Fake test cases sample

2

### Description: This PR serves as a sample for new fake test cases. It helps us verify how our detector behaves when receiving specific responses from the API. While the...

kashifkhan0771