Update Makefile to download and install gitleaks v8.8.4
Update tests for compatibility with gitleaks v8
Added test for committing an unstaged file with secrets to ensure that we avoid regressions
Update local.toml configuration with gitleaks v8, which has some fairly noteworthy changes in the configuration of rules:
file is now path
rules.entropies.Min is now just entropy.
Setting a maximum entropy seems to no longer be supported?
rules.entropies.Group is now secretGroup
Add Github action workflow to ru bats tests in CI
Add bats libraries for better developer experience when running tests
security considerations
Given the upgraded version of gitleaks and significant changes to its configuration and invocation, we want to make sure that there are no regressions in our detection. I assume that the unit tests are supposed to protect against regressions, but is there anything else that we should do here?
Closes #73
Changes proposed in this pull request:
Makefileto download and installgitleaksv8.8.4gitleaksv8local.tomlconfiguration withgitleaksv8, which has some fairly noteworthy changes in the configuration of rules:fileis nowpathrules.entropies.Minis now justentropy.rules.entropies.Groupis nowsecretGroupbatstests in CIbatslibraries for better developer experience when running testssecurity considerations
Given the upgraded version of
gitleaksand significant changes to its configuration and invocation, we want to make sure that there are no regressions in our detection. I assume that the unit tests are supposed to protect against regressions, but is there anything else that we should do here?