Update Makefile to download and install gitleaks v8.8.4
Update tests for compatibility with gitleaks v8
Added test for committing an unstaged file with secrets to ensure that we avoid regressions
Update local.toml configuration with gitleaks v8, which has some fairly noteworthy changes in the configuration of rules:
file is now path
rules.entropies.Min is now just entropy.
Setting a maximum entropy seems to no longer be supported?
rules.entropies.Group is now secretGroup
Add Github action workflow to ru bats tests in CI
Add bats libraries for better developer experience when running tests
security considerations
Given the upgraded version of gitleaks and significant changes to its configuration and invocation, we want to make sure that there are no regressions in our detection. I assume that the unit tests are supposed to protect against regressions, but is there anything else that we should do here?
Closes #73
Changes proposed in this pull request:
Makefile
to download and installgitleaks
v8.8.4gitleaks
v8local.toml
configuration withgitleaks
v8, which has some fairly noteworthy changes in the configuration of rules:file
is nowpath
rules.entropies.Min
is now justentropy
.rules.entropies.Group
is nowsecretGroup
bats
tests in CIbats
libraries for better developer experience when running testssecurity considerations
Given the upgraded version of
gitleaks
and significant changes to its configuration and invocation, we want to make sure that there are no regressions in our detection. I assume that the unit tests are supposed to protect against regressions, but is there anything else that we should do here?