build(deps): Bump trufflesecurity/trufflehog from 3.76.3 to 3.78.0

[dependabot[bot]]

Bumps trufflesecurity/trufflehog from 3.76.3 to 3.78.0.

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.78.0

What's Changed

• Add postman to tui by @​hxnyk in trufflesecurity/trufflehog#2895
• chore(deps): update alpine docker tag to v3.20 by @​renovate in trufflesecurity/trufflehog#2874
• fix(deps): update golang.org/x/exp digest to fd00a4e by @​renovate in trufflesecurity/trufflehog#2899
• Update metadata for DataDog for API + APPKey by @​abmussani in trufflesecurity/trufflehog#2879
• Consistent docker image of MSSQL for integration testing. by @​abmussani in trufflesecurity/trufflehog#2898
• fix(deps): update module github.com/charmbracelet/bubbletea to v0.26.4 by @​renovate in trufflesecurity/trufflehog#2885
• Remove 'www' from DefaultFalsePositives by @​rgmz in trufflesecurity/trufflehog#2896
• Redis integration test by @​abmussani in trufflesecurity/trufflehog#2901
• Fix Github enumerateWithToken test failure by @​rgmz in trufflesecurity/trufflehog#2880
• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.14 by @​renovate in trufflesecurity/trufflehog#2900
• fix(deps): update module github.com/hashicorp/go-retryablehttp to v0.7.7 by @​renovate in trufflesecurity/trufflehog#2904
• integration testing for mongodb. by @​abmussani in trufflesecurity/trufflehog#2907
• fix(deps): update module github.com/azure/go-autorest/autorest/azure/auth to v0.5.13 by @​renovate in trufflesecurity/trufflehog#2902
• chore: fix some comments by @​jinjiadu in trufflesecurity/trufflehog#2903
• [chore] Always log git repositories being scanned by @​mcastorina in trufflesecurity/trufflehog#2909
• Add Jenkins scanning by @​dustin-decker in trufflesecurity/trufflehog#2892

New Contributors

• @​jinjiadu made their first contribution in trufflesecurity/trufflehog#2903

Full Changelog: https://github.com/trufflesecurity/trufflehog/compare/v3.77.0...v3.78.0

v3.77.0

What's Changed

• Remove "finished verificationOverlap chunks" log line by @​rgmz in trufflesecurity/trufflehog#2860
• fix(deps): update module github.com/wasilibs/go-re2 to v1.5.3 by @​renovate in trufflesecurity/trufflehog#2861
• fix(deps): update module google.golang.org/api to v0.181.0 by @​renovate in trufflesecurity/trufflehog#2857
• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.5 by @​renovate in trufflesecurity/trufflehog#2859
• Update azure storage extra data by @​abmussani in trufflesecurity/trufflehog#2808
• Update regex for Organization in Azure Devops detector by @​abmussani in trufflesecurity/trufflehog#2866
• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.6 by @​renovate in trufflesecurity/trufflehog#2867
• [chore] - Use http.NewRequestWithContext by @​ahrav in trufflesecurity/trufflehog#2870
• adding Groq detector by @​0x1 in trufflesecurity/trufflehog#2873
• Log reasons for GitLab repo exclusion by @​rosecodym in trufflesecurity/trufflehog#2875
• [github] Scan user repositories by @​rgmz in trufflesecurity/trufflehog#2814
• Elastic adapter by @​camgunz in trufflesecurity/trufflehog#2727
• Improve handling of Gist URLs by @​rgmz in trufflesecurity/trufflehog#2653
• Fix some GitHub source test issues by @​rgmz in trufflesecurity/trufflehog#2774
• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.10 by @​renovate in trufflesecurity/trufflehog#2871
• fix(deps): update module github.com/go-logr/logr to v1.4.2 by @​renovate in trufflesecurity/trufflehog#2869
• fix(deps): update module cloud.google.com/go/secretmanager to v1.13.1 by @​renovate in trufflesecurity/trufflehog#2884
• fix(deps): update golang.org/x/exp digest to 4c93da0 by @​renovate in trufflesecurity/trufflehog#2883
• fix(deps): update module github.com/elastic/go-elasticsearch/v8 to v8.13.1 by @​renovate in trufflesecurity/trufflehog#2886
• fix(deps): update module github.com/gabriel-vasile/mimetype to v1.4.4 by @​renovate in trufflesecurity/trufflehog#2890
• Added extra data for LaunchDarkly by @​abmussani in trufflesecurity/trufflehog#2836
• feat: support docker image history scanning by @​jamestelfer in trufflesecurity/trufflehog#2882

New Contributors

... (truncated)

Commits

• ef41087 Add Jenkins scanning (#2892)
• c86b423 [chore] Always log git repositories being scanned (#2909)
• 911ea4d chore: fix some comments (#2903)
• 2940a35 fix(deps): update module github.com/azure/go-autorest/autorest/azure/auth to ...
• e5a5b63 integration testing for mongodb. (#2907)
• fbff476 fix(deps): update module github.com/hashicorp/go-retryablehttp to v0.7.7 (#2904)
• eb41756 fix(deps): update module github.com/aws/aws-sdk-go to v1.53.14 (#2900)
• 9053d8f refactor(github): enumerateWithToken flow & tests (#2880)
• 2b3284e Redis integration test (#2901)
• 5575514 fix(falsepositives): remove 'www' (#2896)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ❌ 1 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ✅ 0 package(s) with unknown licenses.

See the Details below.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 39b782698b5b76feb9aea24f5c0ec8d3d80adde2.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

.github/workflows/trufflehog.yml

Package	Version	License	Issue Type
trufflesecurity/trufflehog	ef410873f2920aafc149c6cbbb5001133cffccba	AGPL-3.0	Incompatible License

Allowed Licenses: Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, MIT

OpenSSF Scorecard

Package	Version	Score	Details
actions/trufflesecurity/trufflehog	ef410873f2920aafc149c6cbbb5001133cffccba	Unknown	Unknown
actions/trufflesecurity/trufflehog	da25ac2e7f7eef8c2daf1f8b6dae34e780c7fd96	Unknown	Unknown

Scanned Manifest Files

.github/workflows/trufflehog.yml

• trufflesecurity/trufflehog@ef410873f2920aafc149c6cbbb5001133cffccba
• trufflesecurity/trufflehog@da25ac2e7f7eef8c2daf1f8b6dae34e780c7fd96

[dependabot[bot]]

Superseded by #272.