Detect-secrets

October 4th, 2018

:tada: New Features

- Added a `KeywordDetector` plugin, that was horrible and regretful ([76])

:bug: Bugfixes

- Fixed a bug in `scan --update` where we would append the baseline exclude regex to itself ([78])
- Fixed the regular expression in the `BasicAuthDetector` plugin so that it didn't run forever ([80])
- Removed trailing whitespace from `scan` output ([78])

:snake: Miscellaneous

- Added command line hints and baseline clarification in the README ([81], thanks [JoshuaRLi])

[76]: https://github.com/Yelp/detect-secrets/pull/76
[78]: https://github.com/Yelp/detect-secrets/pull/78
[80]: https://github.com/Yelp/detect-secrets/pull/80
[81]: https://github.com/Yelp/detect-secrets/pull/81

September 12th, 2018

:tada: New Features

- Added a (b)ack option to 'Is this a valid secret?' ([72], thanks [cleborys])
- Added a `BasicAuthDetector` plugin ([74])
- Added CLI functionality to check strings in an adhoc manner ([73])

:bug: Bugfixes

- Added a check to only load json from stdin if it exists ([69], thanks [guykisel])

:snake: Miscellaneous

- Fixed a typo in the README ([68], thanks [whathejoe])


[68]: https://github.com/Yelp/detect-secrets/pull/68
[69]: https://github.com/Yelp/detect-secrets/pull/69
[72]: https://github.com/Yelp/detect-secrets/pull/72
[73]: https://github.com/Yelp/detect-secrets/pull/73
[74]: https://github.com/Yelp/detect-secrets/pull/74

August 1st, 2018

:bug: Bugfixes

- Fixed a bug where we didn't skip sequential strings when we should have ([67])

[67]: https://github.com/Yelp/detect-secrets/pull/67

August 1st, 2018

:tada: New Features

- Scan `--all-files` option ([57])
- YAML inline whitelisting support ([50])

:boom: Breaking Changes

- Changed `--audit` and `--scan` to `audit` and `scan` ([51])
- Changed `scan --import <baseline>` to `scan --update <baseline>` ([58])

:telescope: Accuracy

- Reduced false-positives caused by sequential strings, e.g. `ABCDEF` ([64])

:bug: Bugfixes

- Fixed a bug where the pre-commit code would remove the `is_secret` attribute from
audited baselines ([65])
- Fixed an `audit` bug where we would crash if a file in the baseline did not exist
([56])
- Improved the `audit` functionality to handle short files better ([48])


[48]: https://github.com/Yelp/detect-secrets/pull/48
[50]: https://github.com/Yelp/detect-secrets/pull/50
[51]: https://github.com/Yelp/detect-secrets/pull/51
[56]: https://github.com/Yelp/detect-secrets/pull/56
[57]: https://github.com/Yelp/detect-secrets/pull/57
[58]: https://github.com/Yelp/detect-secrets/pull/58
[64]: https://github.com/Yelp/detect-secrets/pull/64
[65]: https://github.com/Yelp/detect-secrets/pull/65

June 28th, 2018

:bug: Bugfixes

- Fixed numbering system with interactive audit
- Fixed "leapfrog" edge case for audit functionality ([47])


[47]: https://github.com/Yelp/detect-secrets/pull/47

:tada: New Features

- Allow scanning of non-git files ([18])

:telescope: Accuracy

- Improved scanning of INI config files with `HighEntropyString` ([13] and [17])
- Improved scanning of YAML files with `HighEntropyString` ([16])

:bug: Bugfixes

- Fixed `PrivateKeyDetector` plugin analyze results' representation ([15])

[13]: https://github.com/Yelp/detect-secrets/pull/13
[15]: https://github.com/Yelp/detect-secrets/pull/15
[16]: https://github.com/Yelp/detect-secrets/pull/16
[17]: https://github.com/Yelp/detect-secrets/pull/17
[18]: https://github.com/Yelp/detect-secrets/pull/18