build(deps): Bump trufflesecurity/trufflehog from 3.76.3 to 3.78.1

[dependabot[bot]]

Bumps trufflesecurity/trufflehog from 3.76.3 to 3.78.1.

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.78.1

What's Changed

• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.15 by @​renovate in trufflesecurity/trufflehog#2911
• fix(deps): update module github.com/microsoft/go-mssqldb to v1.7.2 by @​renovate in trufflesecurity/trufflehog#2912
• Add elasticsearch to tui by @​hxnyk in trufflesecurity/trufflehog#2915
• Improve GitHub wiki scan errs by @​rgmz in trufflesecurity/trufflehog#2917
• Update OpenAI detector by @​rgmz in trufflesecurity/trufflehog#2863
• Add flag to get information if trufflehog being ran from TUI by @​hxnyk in trufflesecurity/trufflehog#1644
• [feat] - Introduce channelmetrics Package for Channel Metrics Collection by @​ahrav in trufflesecurity/trufflehog#2889
• [feat] - Optimize detector performance by reducing data passed to regex by @​ahrav in trufflesecurity/trufflehog#2812
• Go should be installed before codeql initializes by @​dustin-decker in trufflesecurity/trufflehog#2919
• [fix] - continue on error by @​ahrav in trufflesecurity/trufflehog#2921
• Update Jenkins in tui by @​hxnyk in trufflesecurity/trufflehog#2925
• [chore] - remove stutter in naming by @​ahrav in trufflesecurity/trufflehog#2926
• [fix] - Correctly calculate EntireSpanChunkCalculator span by @​ahrav in trufflesecurity/trufflehog#2924
• Improve Git scaning logs by @​rgmz in trufflesecurity/trufflehog#2923
• [chore] - address comments by @​ahrav in trufflesecurity/trufflehog#2920
• Make cache.Cache typed by @​rgmz in trufflesecurity/trufflehog#2930
• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.17 by @​renovate in trufflesecurity/trufflehog#2914
• [chore] Polish channelmetrics package by @​mcastorina in trufflesecurity/trufflehog#2938
• Add *.dia to ignored extensions list by @​rgmz in trufflesecurity/trufflehog#2939
• Make the github action work with a path as input by @​benbridts in trufflesecurity/trufflehog#2908
• fix(deps): update module github.com/snowflakedb/gosnowflake to v1.10.1 by @​renovate in trufflesecurity/trufflehog#2913
• fix(deps): update module github.com/aws/aws-sdk-go to v1.53.19 by @​renovate in trufflesecurity/trufflehog#2944
• fix(deps): update module github.com/launchdarkly/go-server-sdk/v7 to v7.4.1 by @​renovate in trufflesecurity/trufflehog#2947
• [bug] - Ensure BufferedFileWriter Flushes Buffer Contents to File Correctly by @​ahrav in trufflesecurity/trufflehog#2943
• Change filesystem symlink err handling by @​rgmz in trufflesecurity/trufflehog#2941
• Fix panic in MaxMind detector by @​rgmz in trufflesecurity/trufflehog#2948
• [chore] - Update discordwebhook detector keyword by @​ahrav in trufflesecurity/trufflehog#2954
• [fix] - Refactor Filtering Logic to Fix Known False Positive Handling in Overlapping Cases by @​ahrav in trufflesecurity/trufflehog#2946
• [feat] - Update span calculation logic to use offset magnitude by @​ahrav in trufflesecurity/trufflehog#2957
• [chore] - pin archiver dependency by @​ahrav in trufflesecurity/trufflehog#2958
• [chore] - Remove replace by @​ahrav in trufflesecurity/trufflehog#2959

New Contributors

• @​benbridts made their first contribution in trufflesecurity/trufflehog#2908

Full Changelog: https://github.com/trufflesecurity/trufflehog/compare/v3.78.0...v3.78.1

v3.78.0

What's Changed

• Add postman to tui by @​hxnyk in trufflesecurity/trufflehog#2895
• chore(deps): update alpine docker tag to v3.20 by @​renovate in trufflesecurity/trufflehog#2874
• fix(deps): update golang.org/x/exp digest to fd00a4e by @​renovate in trufflesecurity/trufflehog#2899
• Update metadata for DataDog for API + APPKey by @​abmussani in trufflesecurity/trufflehog#2879
• Consistent docker image of MSSQL for integration testing. by @​abmussani in trufflesecurity/trufflehog#2898
• fix(deps): update module github.com/charmbracelet/bubbletea to v0.26.4 by @​renovate in trufflesecurity/trufflehog#2885
• Remove 'www' from DefaultFalsePositives by @​rgmz in trufflesecurity/trufflehog#2896
• Redis integration test by @​abmussani in trufflesecurity/trufflehog#2901
• Fix Github enumerateWithToken test failure by @​rgmz in trufflesecurity/trufflehog#2880

... (truncated)

Commits

• 433a57a use @​master (#2959)
• e173c29 pin archiver dependency (#2958)
• bf77251 [feat] - Update span calculation logic to use offset magnitude (#2957)
• 68bea57 [fix] - Refactor Filtering Logic to Fix Known False Positive Handling in Over...
• 11b80db [chore] - Update discordwebhook detector keyword (#2954)
• 6b52d5a fix(maxmind): prevent npd panic (#2948)
• ca67a8a refactor(filesystem): change symlink err handling (#2941)
• 2f7a0d0 [bug] - Ensure BufferedFileWriter Flushes Buffer Contents to File Correctly (...
• 3a029ea fix(deps): update module github.com/launchdarkly/go-server-sdk/v7 to v7.4.1 (...
• 4e21590 fix(deps): update module github.com/aws/aws-sdk-go to v1.53.19 (#2944)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ❌ 1 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ✅ 0 package(s) with unknown licenses.

See the Details below.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 09d91e1655c98620c731a80f952bdcb06891616d.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

.github/workflows/trufflehog.yml

Package	Version	License	Issue Type
trufflesecurity/trufflehog	433a57adaf8fedce312630ef593f5142227c5855	AGPL-3.0	Incompatible License

Allowed Licenses: Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, MIT

OpenSSF Scorecard

Package	Version	Score	Details
actions/trufflesecurity/trufflehog	433a57adaf8fedce312630ef593f5142227c5855	Unknown	Unknown
actions/trufflesecurity/trufflehog	da25ac2e7f7eef8c2daf1f8b6dae34e780c7fd96	Unknown	Unknown

Scanned Manifest Files

.github/workflows/trufflehog.yml

• trufflesecurity/trufflehog@433a57adaf8fedce312630ef593f5142227c5855
• trufflesecurity/trufflehog@da25ac2e7f7eef8c2daf1f8b6dae34e780c7fd96