Releases: abdullahkhawer/find-and-report-secrets-in-code
Releases · abdullahkhawer/find-and-report-secrets-in-code
Release v1.3.0
Release v1.3.0 - Add GitHub workflow template, update GitLab CI template, fix some bugs, update READMEs and do some minor code refactoring
1.3.0 - 2024-09-02
🚀 Features
- Add GitHub workflow template to easily enable the tool in any GitHub repository and update the existing GitLab CI template which is used to easily enable the tool in any GitLab repository to changes its path, Docker image used and variables location.
🐛 Bug Fixes
- Add a condition to only update the HTML template and find unique commit authors when either Confluence is enabled or Slack is enabled.
- Add a condition to only generate the custom report if 1 or more secrets are found.
📚 Documentation
- Update Docker README to fix the License reference.
Release v1.2.0
Release v1.2.0 - Reduce Docker Image Size, Improve Docker Image README and Do Minor Improvements
1.2.0 - 2024-08-15
🚀 Features
- Reduce Docker image size by 86% (from 677 MB (240.53 MB compressed) -> 95.7 MB (36.47 MB compressed)) by using multi-stage builds with Alpine images for Golang (Go) and Python as base images, combining RUN commands, installing necessary packages only and using no cache options for package installers to reduce installation size.
🐛 Bug Fixes
- Add no cache options for package installers to reduce installation size.
📚 Documentation
- Update README.md with reference screenshots
- Update README to add license description and update founder reference.
- Update Docker README to add 'Quick Reference', 'Supported Tags', and license description and update founder reference.
⚙️ Miscellaneous Tasks
- Add Apache License for Docker image.
Release v1.1.0
1.1.0 - 2024-07-24
🚀 Features
- Update shell script to prepare and add URL for each finding in the JSON report.
- Update python script to improve logging, comments, pylint score from 1.44 to 9.25/10 by refactoring code, HTML content template to add link to the file reference where secret is detected and Slack notification message along with its format in case of both no secrets found and 1 or more secrets found.
📚 Documentation
- Update READMEs to add 2 new ENVs, add 1 new JSON field and fix some existing commands and descriptions mentioned.
⚙️ Miscellaneous Tasks
- Remove unnecessary file from .gitignore.
- Add 2 new variables and use image 1.1.0
- Update version to v1.1.0
Release v1.0.1
1.0.1 - 2024-07-03
🐛 Bug Fixes
- Update code to use gitleaks v8.18.4 instead of latest and update the READMEs accordingly.
- Remove sudo as it wasn't required in this script.
⚙️ Miscellaneous Tasks
- Update .gitleaks.toml file to remove unnecessary paths from the 'allowlist'.
- Add cliff.toml to be able to update CHANGELOG.md using git-cliff.
- (release) Prepare Release for v1.0.1
- Remove cliff.toml
- Update print command to fix a word.
Release v1.0.0
1.0.0 - 2024-06-06
🚀 Features
- [breaking] Develop a solution which can be executed on any macOS or Linux system either locally or on a remote server or via a CI/CD pipeline that finds secrets in a git repository using Gitleaks, generates a JSON report based on the findings from Gitleaks by extracting only the relevant information, finds the commit id and commit author for each finding, updates an Atlassian Confluence page with the secrets found based on that generated report and finally sends an alert on Slack.