From 23e0964a3bdb60dc0c558df121e718e7a233d0df Mon Sep 17 00:00:00 2001 From: Anatoliy Serputov Date: Fri, 29 Oct 2021 02:35:24 -0400 Subject: [PATCH 1/5] Boolean Flags Update --- tartufo/cli.py | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/tartufo/cli.py b/tartufo/cli.py index 407f2e6d..7b8b8121 100644 --- a/tartufo/cli.py +++ b/tartufo/cli.py @@ -55,7 +55,7 @@ def get_command(self, ctx: click.Context, cmd_name: str) -> Optional[click.Comma @click.option( "--default-regexes/--no-default-regexes", is_flag=True, - default=True, + default="--default-regexes", show_default=True, help="Whether to include the default regex list when configuring" " search patterns. Only applicable if --rules is also specified.", @@ -63,21 +63,21 @@ def get_command(self, ctx: click.Context, cmd_name: str) -> Optional[click.Comma @click.option( "--compact/--no-compact", is_flag=True, - default=False, + default="--no-compact", show_default=True, help="Enable reduced output.", ) @click.option( "--entropy/--no-entropy", is_flag=True, - default=True, + default="--entropy", show_default=True, help="Enable entropy checks.", ) @click.option( "--regex/--no-regex", is_flag=True, - default=False, + default="--no-regex", show_default=True, help="Enable high signal regexes checks.", ) From 0c0309611a6c87fcfd2d0c538288273de873e4fc Mon Sep 17 00:00:00 2001 From: A Serputov <65831678+aserputov@users.noreply.github.com> Date: Wed, 3 Nov 2021 13:49:59 -0400 Subject: [PATCH 2/5] Update cli.py --- tartufo/cli.py | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/tartufo/cli.py b/tartufo/cli.py index 7b8b8121..407f2e6d 100644 --- a/tartufo/cli.py +++ b/tartufo/cli.py @@ -55,7 +55,7 @@ def get_command(self, ctx: click.Context, cmd_name: str) -> Optional[click.Comma @click.option( "--default-regexes/--no-default-regexes", is_flag=True, - default="--default-regexes", + default=True, show_default=True, help="Whether to include the default regex list when configuring" " search patterns. Only applicable if --rules is also specified.", @@ -63,21 +63,21 @@ def get_command(self, ctx: click.Context, cmd_name: str) -> Optional[click.Comma @click.option( "--compact/--no-compact", is_flag=True, - default="--no-compact", + default=False, show_default=True, help="Enable reduced output.", ) @click.option( "--entropy/--no-entropy", is_flag=True, - default="--entropy", + default=True, show_default=True, help="Enable entropy checks.", ) @click.option( "--regex/--no-regex", is_flag=True, - default="--no-regex", + default=False, show_default=True, help="Enable high signal regexes checks.", ) From a2db22b4308cb16d6a8c49d74899f89285ed563b Mon Sep 17 00:00:00 2001 From: Anatoliy Serputov Date: Wed, 3 Nov 2021 14:02:30 -0400 Subject: [PATCH 3/5] Update: Click package update --- poetry.lock | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) diff --git a/poetry.lock b/poetry.lock index 0855e6d6..0dde1b84 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1213,12 +1213,28 @@ lazy-object-proxy = [ {file = "lazy_object_proxy-1.6.0-cp39-cp39-win_amd64.whl", hash = "sha256:f5144c75445ae3ca2057faac03fda5a902eff196702b0a24daf1d6ce0650514b"}, ] markupsafe = [ + {file = "MarkupSafe-2.0.1-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:d8446c54dc28c01e5a2dbac5a25f071f6653e6e40f3a8818e8b45d790fe6ef53"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:36bc903cbb393720fad60fc28c10de6acf10dc6cc883f3e24ee4012371399a38"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2d7d807855b419fc2ed3e631034685db6079889a1f01d5d9dac950f764da3dad"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl", hash = "sha256:add36cb2dbb8b736611303cd3bfcee00afd96471b09cda130da3581cbdc56a6d"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl", hash = "sha256:168cd0a3642de83558a5153c8bd34f175a9a6e7f6dc6384b9655d2697312a646"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:4dc8f9fb58f7364b63fd9f85013b780ef83c11857ae79f2feda41e270468dd9b"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:20dca64a3ef2d6e4d5d615a3fd418ad3bde77a47ec8a23d984a12b5b4c74491a"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:cdfba22ea2f0029c9261a4bd07e830a8da012291fbe44dc794e488b6c9bb353a"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-win32.whl", hash = "sha256:99df47edb6bda1249d3e80fdabb1dab8c08ef3975f69aed437cb69d0a5de1e28"}, + {file = "MarkupSafe-2.0.1-cp310-cp310-win_amd64.whl", hash = "sha256:e0f138900af21926a02425cf736db95be9f4af72ba1bb21453432a07f6082134"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-macosx_10_9_x86_64.whl", hash = "sha256:f9081981fe268bd86831e5c75f7de206ef275defcb82bc70740ae6dc507aee51"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux1_i686.whl", hash = "sha256:0955295dd5eec6cb6cc2fe1698f4c6d84af2e92de33fbcac4111913cd100a6ff"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux1_x86_64.whl", hash = "sha256:0446679737af14f45767963a1a9ef7620189912317d095f2d9ffa183a4d25d2b"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux2010_i686.whl", hash = "sha256:f826e31d18b516f653fe296d967d700fddad5901ae07c622bb3705955e1faa94"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux2010_x86_64.whl", hash = "sha256:fa130dd50c57d53368c9d59395cb5526eda596d3ffe36666cd81a44d56e48872"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux2014_aarch64.whl", hash = "sha256:905fec760bd2fa1388bb5b489ee8ee5f7291d692638ea5f67982d968366bef9f"}, + {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:bf5d821ffabf0ef3533c39c518f3357b171a1651c1ff6827325e4489b0e46c3c"}, + {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl", hash = "sha256:0d4b31cc67ab36e3392bbf3862cfbadac3db12bdd8b02a2731f509ed5b829724"}, + {file = "MarkupSafe-2.0.1-cp36-cp36m-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl", hash = "sha256:baa1a4e8f868845af802979fcdbf0bb11f94f1cb7ced4c4b8a351bb60d108145"}, + {file = "MarkupSafe-2.0.1-cp36-cp36m-musllinux_1_1_aarch64.whl", hash = "sha256:deb993cacb280823246a026e3b2d81c493c53de6acfd5e6bfe31ab3402bb37dd"}, + {file = "MarkupSafe-2.0.1-cp36-cp36m-musllinux_1_1_i686.whl", hash = "sha256:63f3268ba69ace99cab4e3e3b5840b03340efed0948ab8f78d2fd87ee5442a4f"}, + {file = "MarkupSafe-2.0.1-cp36-cp36m-musllinux_1_1_x86_64.whl", hash = "sha256:8d206346619592c6200148b01a2142798c989edcb9c896f9ac9722a99d4e77e6"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-win32.whl", hash = "sha256:6c4ca60fa24e85fe25b912b01e62cb969d69a23a5d5867682dd3e80b5b02581d"}, {file = "MarkupSafe-2.0.1-cp36-cp36m-win_amd64.whl", hash = "sha256:b2f4bf27480f5e5e8ce285a8c8fd176c0b03e93dcc6646477d4630e83440c6a9"}, {file = "MarkupSafe-2.0.1-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:0717a7390a68be14b8c793ba258e075c6f4ca819f15edfc2a3a027c823718567"}, @@ -1227,14 +1243,27 @@ markupsafe = [ {file = "MarkupSafe-2.0.1-cp37-cp37m-manylinux2010_i686.whl", hash = "sha256:d7f9850398e85aba693bb640262d3611788b1f29a79f0c93c565694658f4071f"}, {file = "MarkupSafe-2.0.1-cp37-cp37m-manylinux2010_x86_64.whl", hash = "sha256:6a7fae0dd14cf60ad5ff42baa2e95727c3d81ded453457771d02b7d2b3f9c0c2"}, {file = "MarkupSafe-2.0.1-cp37-cp37m-manylinux2014_aarch64.whl", hash = "sha256:b7f2d075102dc8c794cbde1947378051c4e5180d52d276987b8d28a3bd58c17d"}, + {file = "MarkupSafe-2.0.1-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e9936f0b261d4df76ad22f8fee3ae83b60d7c3e871292cd42f40b81b70afae85"}, + {file = "MarkupSafe-2.0.1-cp37-cp37m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl", hash = "sha256:2a7d351cbd8cfeb19ca00de495e224dea7e7d919659c2841bbb7f420ad03e2d6"}, + {file = "MarkupSafe-2.0.1-cp37-cp37m-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl", hash = "sha256:60bf42e36abfaf9aff1f50f52644b336d4f0a3fd6d8a60ca0d054ac9f713a864"}, + {file = "MarkupSafe-2.0.1-cp37-cp37m-musllinux_1_1_aarch64.whl", hash = "sha256:d6c7ebd4e944c85e2c3421e612a7057a2f48d478d79e61800d81468a8d842207"}, + {file = "MarkupSafe-2.0.1-cp37-cp37m-musllinux_1_1_i686.whl", hash = "sha256:f0567c4dc99f264f49fe27da5f735f414c4e7e7dd850cfd8e69f0862d7c74ea9"}, + {file = "MarkupSafe-2.0.1-cp37-cp37m-musllinux_1_1_x86_64.whl", hash = "sha256:89c687013cb1cd489a0f0ac24febe8c7a666e6e221b783e53ac50ebf68e45d86"}, {file = "MarkupSafe-2.0.1-cp37-cp37m-win32.whl", hash = "sha256:a30e67a65b53ea0a5e62fe23682cfe22712e01f453b95233b25502f7c61cb415"}, {file = "MarkupSafe-2.0.1-cp37-cp37m-win_amd64.whl", hash = "sha256:611d1ad9a4288cf3e3c16014564df047fe08410e628f89805e475368bd304914"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:5bb28c636d87e840583ee3adeb78172efc47c8b26127267f54a9c0ec251d41a9"}, {file = "MarkupSafe-2.0.1-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:be98f628055368795d818ebf93da628541e10b75b41c559fdf36d104c5787066"}, {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux1_i686.whl", hash = "sha256:1d609f577dc6e1aa17d746f8bd3c31aa4d258f4070d61b2aa5c4166c1539de35"}, {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux1_x86_64.whl", hash = "sha256:7d91275b0245b1da4d4cfa07e0faedd5b0812efc15b702576d103293e252af1b"}, {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux2010_i686.whl", hash = "sha256:01a9b8ea66f1658938f65b93a85ebe8bc016e6769611be228d797c9d998dd298"}, {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux2010_x86_64.whl", hash = "sha256:47ab1e7b91c098ab893b828deafa1203de86d0bc6ab587b160f78fe6c4011f75"}, {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux2014_aarch64.whl", hash = "sha256:97383d78eb34da7e1fa37dd273c20ad4320929af65d156e35a5e2d89566d9dfb"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:6fcf051089389abe060c9cd7caa212c707e58153afa2c649f00346ce6d260f1b"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl", hash = "sha256:5855f8438a7d1d458206a2466bf82b0f104a3724bf96a1c781ab731e4201731a"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl", hash = "sha256:3dd007d54ee88b46be476e293f48c85048603f5f516008bee124ddd891398ed6"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:aca6377c0cb8a8253e493c6b451565ac77e98c2951c45f913e0b52facdcff83f"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-musllinux_1_1_i686.whl", hash = "sha256:04635854b943835a6ea959e948d19dcd311762c5c0c6e1f0e16ee57022669194"}, + {file = "MarkupSafe-2.0.1-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:6300b8454aa6930a24b9618fbb54b5a68135092bc666f7b06901f897fa5c2fee"}, {file = "MarkupSafe-2.0.1-cp38-cp38-win32.whl", hash = "sha256:023cb26ec21ece8dc3907c0e8320058b2e0cb3c55cf9564da612bc325bed5e64"}, {file = "MarkupSafe-2.0.1-cp38-cp38-win_amd64.whl", hash = "sha256:984d76483eb32f1bcb536dc27e4ad56bba4baa70be32fa87152832cdd9db0833"}, {file = "MarkupSafe-2.0.1-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:2ef54abee730b502252bcdf31b10dacb0a416229b72c18b19e24a4509f273d26"}, @@ -1244,6 +1273,12 @@ markupsafe = [ {file = "MarkupSafe-2.0.1-cp39-cp39-manylinux2010_i686.whl", hash = "sha256:4efca8f86c54b22348a5467704e3fec767b2db12fc39c6d963168ab1d3fc9135"}, {file = "MarkupSafe-2.0.1-cp39-cp39-manylinux2010_x86_64.whl", hash = "sha256:ab3ef638ace319fa26553db0624c4699e31a28bb2a835c5faca8f8acf6a5a902"}, {file = "MarkupSafe-2.0.1-cp39-cp39-manylinux2014_aarch64.whl", hash = "sha256:f8ba0e8349a38d3001fae7eadded3f6606f0da5d748ee53cc1dab1d6527b9509"}, + {file = "MarkupSafe-2.0.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c47adbc92fc1bb2b3274c4b3a43ae0e4573d9fbff4f54cd484555edbf030baf1"}, + {file = "MarkupSafe-2.0.1-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl", hash = "sha256:37205cac2a79194e3750b0af2a5720d95f786a55ce7df90c3af697bfa100eaac"}, + {file = "MarkupSafe-2.0.1-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl", hash = "sha256:1f2ade76b9903f39aa442b4aadd2177decb66525062db244b35d71d0ee8599b6"}, + {file = "MarkupSafe-2.0.1-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:4296f2b1ce8c86a6aea78613c34bb1a672ea0e3de9c6ba08a960efe0b0a09047"}, + {file = "MarkupSafe-2.0.1-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:9f02365d4e99430a12647f09b6cc8bab61a6564363f313126f775eb4f6ef798e"}, + {file = "MarkupSafe-2.0.1-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:5b6d930f030f8ed98e3e6c98ffa0652bdb82601e7a016ec2ab5d7ff23baa78d1"}, {file = "MarkupSafe-2.0.1-cp39-cp39-win32.whl", hash = "sha256:10f82115e21dc0dfec9ab5c0223652f7197feb168c940f3ef61563fc2d6beb74"}, {file = "MarkupSafe-2.0.1-cp39-cp39-win_amd64.whl", hash = "sha256:693ce3f9e70a6cf7d2fb9e6c9d8b204b6b39897a2c4a1aa65728d5ac97dcc1d8"}, {file = "MarkupSafe-2.0.1.tar.gz", hash = "sha256:594c67807fb16238b30c44bdf74f36c02cdf22d1c8cda91ef8a0ed8dabf5620a"}, From 4a82ddc257c9cdb0871aa32a01df46253699177a Mon Sep 17 00:00:00 2001 From: Anatoliy Serputov Date: Thu, 4 Nov 2021 22:44:31 -0400 Subject: [PATCH 4/5] Update: 1. Click version 8.0.3. 2.README.MD --- README.md | 12 ++++++------ poetry.lock | 35 +++++++++++++++++++++++++---------- pyproject.toml | 2 +- 3 files changed, 32 insertions(+), 17 deletions(-) diff --git a/README.md b/README.md index c353c9a8..2fff5fca 100644 --- a/README.md +++ b/README.md @@ -51,12 +51,12 @@ Options: Whether to include the default regex list when configuring search patterns. Only applicable if --rules is also specified. - [default: True] + [default: --default-regexes] - --compact / --no-compact Enable reduced output. [default: False] - --entropy / --no-entropy Enable entropy checks. [default: True] + --compact / --no-compact Enable reduced output. [default: --no-compact] + --entropy / --no-entropy Enable entropy checks. [default: --entropy] --regex / --no-regex Enable high signal regexes checks. - [default: False] + [default: --no-regex ] -i, --include-paths FILENAME [DEPRECATED] Use `--include-path-patterns`. File with regular expressions (one per @@ -145,7 +145,7 @@ Options: --log-timestamps / --no-log-timestamps Enable or disable timestamps in logging - messages. [default: True] + messages. [default: log-timestamps] -b64, --b64-entropy-score FLOAT Modify the base64 entropy score. If you @@ -187,4 +187,4 @@ the [truffleHog] project. [our contributing docs]: https://tartufo.readthedocs.io/en/latest/CONTRIBUTING.html [pre-commit]: https://pre-commit.com/ -[truffleHog]: https://github.com/dxa4481/truffleHog +[trufflehog]: https://github.com/dxa4481/truffleHog diff --git a/poetry.lock b/poetry.lock index 0dde1b84..5e869cca 100644 --- a/poetry.lock +++ b/poetry.lock @@ -149,11 +149,15 @@ unicode_backport = ["unicodedata2"] [[package]] name = "click" -version = "7.1.2" +version = "8.0.3" description = "Composable command line interface toolkit" category = "main" optional = false -python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*" +python-versions = ">=3.6" + +[package.dependencies] +colorama = {version = "*", markers = "platform_system == \"Windows\""} +importlib-metadata = {version = "*", markers = "python_version < \"3.8\""} [[package]] name = "colorama" @@ -419,6 +423,14 @@ category = "dev" optional = false python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,>=2.7" +[[package]] +name = "pbr" +version = "5.7.0" +description = "Python Build Reasonableness" +category = "main" +optional = true +python-versions = ">=2.6" + [[package]] name = "platformdirs" version = "2.4.0" @@ -698,15 +710,14 @@ test = ["pytest", "pytest-cov", "html5lib", "cython", "typed-ast"] [[package]] name = "sphinx-click" -version = "2.7.1" +version = "2.5.0" description = "Sphinx extension that automatically documents click applications" category = "main" optional = true python-versions = "*" [package.dependencies] -click = ">=6.0,<8.0" -docutils = "*" +pbr = ">=2.0" sphinx = ">=1.5,<4.0" [[package]] @@ -963,7 +974,7 @@ docs = ["recommonmark", "sphinx", "sphinx-click", "sphinx-rtd-theme", "sphinxcon [metadata] lock-version = "1.1" python-versions = "^3.6.2" -content-hash = "9f04bb49f0605b7c6606f6f15640a2d3231eaa01506afbe253f32521b5a669b5" +content-hash = "d0f809eb51abfaa4f8cf8c8f4f9129d95a3d9719e4ad93bb8ab89e0482c0ac66" [metadata.files] alabaster = [ @@ -1067,8 +1078,8 @@ charset-normalizer = [ {file = "charset_normalizer-2.0.7-py3-none-any.whl", hash = "sha256:f7af805c321bfa1ce6714c51f254e0d5bb5e5834039bc17db7ebe3a4cec9492b"}, ] click = [ - {file = "click-7.1.2-py2.py3-none-any.whl", hash = "sha256:dacca89f4bfadd5de3d7489b7c8a566eee0d3676333fbb50030263894c38c0dc"}, - {file = "click-7.1.2.tar.gz", hash = "sha256:d2b5255c7c6349bc1bd1e59e08cd12acbbd63ce649f2588755783aa94dfb6b1a"}, + {file = "click-8.0.3-py3-none-any.whl", hash = "sha256:353f466495adaeb40b6b5f592f9f91cb22372351c84caeb068132442a4518ef3"}, + {file = "click-8.0.3.tar.gz", hash = "sha256:410e932b050f5eed773c4cda94de75971c89cdb3155a72a0831139a79e5ecb5b"}, ] colorama = [ {file = "colorama-0.4.4-py2.py3-none-any.whl", hash = "sha256:9f47eda37229f68eee03b24b9748937c7dc3868f906e8ba69fbcbdd3bc5dc3e2"}, @@ -1328,6 +1339,10 @@ pathspec = [ {file = "pathspec-0.9.0-py2.py3-none-any.whl", hash = "sha256:7d15c4ddb0b5c802d161efc417ec1a2558ea2653c2e8ad9c19098201dc1c993a"}, {file = "pathspec-0.9.0.tar.gz", hash = "sha256:e564499435a2673d586f6b2130bb5b95f04a3ba06f81b8f895b651a3c76aabb1"}, ] +pbr = [ + {file = "pbr-5.7.0-py2.py3-none-any.whl", hash = "sha256:60002958e459b195e8dbe61bf22bcf344eedf1b4e03a321a5414feb15566100c"}, + {file = "pbr-5.7.0.tar.gz", hash = "sha256:4651ca1445e80f2781827305de3d76b3ce53195f2227762684eb08f17bc473b7"}, +] platformdirs = [ {file = "platformdirs-2.4.0-py3-none-any.whl", hash = "sha256:8868bbe3c3c80d42f20156f22e7131d2fb321f5bc86a2a345375c6481a67021d"}, {file = "platformdirs-2.4.0.tar.gz", hash = "sha256:367a5e80b3d04d2428ffa76d33f124cf11e8fff2acdaa9b43d545f5c7d661ef2"}, @@ -1502,8 +1517,8 @@ sphinx = [ {file = "Sphinx-3.5.4.tar.gz", hash = "sha256:19010b7b9fa0dc7756a6e105b2aacd3a80f798af3c25c273be64d7beeb482cb1"}, ] sphinx-click = [ - {file = "sphinx-click-2.7.1.tar.gz", hash = "sha256:1b6175df5392564fd3780000d4627e5a2c8c3b29d05ad311dbbe38fcf5f3327b"}, - {file = "sphinx_click-2.7.1-py2.py3-none-any.whl", hash = "sha256:e738a2c7a87f23e67da4a9e28ca6f085d3ca626f0e4164847f77ff3c36c65df1"}, + {file = "sphinx-click-2.5.0.tar.gz", hash = "sha256:8ba44ca446ba4bb0585069b8aabaa81e833472d6669b36924a398405311d206f"}, + {file = "sphinx_click-2.5.0-py2.py3-none-any.whl", hash = "sha256:6848ba2d084ef2feebae0ce3603c1c02a2ba5ded54fb6c0cf24fd01204a945f3"}, ] sphinx-rtd-theme = [ {file = "sphinx_rtd_theme-0.5.2-py2.py3-none-any.whl", hash = "sha256:4a05bdbe8b1446d77a01e20a23ebc6777c74f43237035e76be89699308987d6f"}, diff --git a/pyproject.toml b/pyproject.toml index e2cff093..4c35f683 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -39,7 +39,7 @@ tartufo = "tartufo.cli:main" [tool.poetry.dependencies] GitPython = "<3.1.20" pygit2 = "~1.6" -click = "^7" +click = "^8.0.3" colorama = {version = "*", markers = "sys_platform == 'win32'"} dataclasses = {version = "*", python = "< 3.7"} python = "^3.6.2" From d4b4b06190830ab7f911f11b2f8bf0ef66cbe1da Mon Sep 17 00:00:00 2001 From: Anatoliy Serputov Date: Thu, 4 Nov 2021 23:01:28 -0400 Subject: [PATCH 5/5] Tests: 145 passed. 1 skipped. --- CHANGELOG.md | 398 +++++++++++++++++++++++++-------------------------- 1 file changed, 194 insertions(+), 204 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index ecda7f0c..a22a2889 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,230 +1,227 @@ -vx.x.x - TBD ------------- +## vx.x.x - TBD Bug fixes: -* [#247](https://github.com/godaddy/tartufo/issues/247) - The `--branch` qualifier - now works again when using `scan-remote-repo`. +- [#247](https://github.com/godaddy/tartufo/issues/247) - The `--branch` qualifier + now works again when using `scan-remote-repo`. Features: -* [#227](https://github.com/godaddy/tartufo/pull/227) - Report findings incrementally - as scan progresses instead of holding all of them until it has completed. This - is a reimplementation of [#108](https://github.com/godaddy/tartufo/pull/108); - thanks to @dclayton-godaddy for showing the way. -* [#244](https://github.com/godaddy/tartufo/pull/244) - Drops support for - `--fetch/--no-fetch` option for local scans +- [#245](https://github.com/godaddy/tartufo/issues/245) - Better defaults for boolean flags. -v2.9.0 - 19 October 2021 ------------------------- +- [#246](https://github.com/godaddy/tartufo/pull/246) - Update for the "click" package to + make better default values of boolean flags. + +## v3.x.x - 4 November 2021 + +Bug fixes: + +- [#247](https://github.com/godaddy/tartufo/issues/247) - The `--branch` qualifier + now works again when using `scan-remote-repo`. + +Features: + +- [#227](https://github.com/godaddy/tartufo/pull/227) - Report findings incrementally + as scan progresses instead of holding all of them until it has completed. This + is a reimplementation of [#108](https://github.com/godaddy/tartufo/pull/108); + thanks to @dclayton-godaddy for showing the way. +- [#244](https://github.com/godaddy/tartufo/pull/244) - Drops support for + `--fetch/--no-fetch` option for local scans + +## v2.9.0 - 19 October 2021 Bug fixes: -* Reverted [#222](https://github.com/godaddy/tartufo/pull/222) -- users had been - relying on the previously implemented behavior, causing this change to break - their pipelines. +- Reverted [#222](https://github.com/godaddy/tartufo/pull/222) -- users had been + relying on the previously implemented behavior, causing this change to break + their pipelines. Features: -* Behavior introduced in [#222](https://github.com/godaddy/tartufo/pull/222) is - now opt-in via an updated config specification for `exclude-entropy-patterns`. - This is now done via a TOML table, rather than a specifically patterned string. - Users who have the old style configuration will now receive a - `DeprecationWarning` stating that the old behavior will go away with v3.0. -* Fixed up warning handling so that we can display `DeprecationWarning`s to users - more easily. -* [#223](https://github.com/godaddy/tartufo/pull/223) New flags - (`-b64`/`--b64-entropy-score` and `-hex`/`--hex-entropy-score`) allow for user - tuning of the entropy reporting sensitivity. They default to 4.5 and 3.0, - respectively. - -v2.8.1 - 11 October 2021 ------------------------- +- Behavior introduced in [#222](https://github.com/godaddy/tartufo/pull/222) is + now opt-in via an updated config specification for `exclude-entropy-patterns`. + This is now done via a TOML table, rather than a specifically patterned string. + Users who have the old style configuration will now receive a + `DeprecationWarning` stating that the old behavior will go away with v3.0. +- Fixed up warning handling so that we can display `DeprecationWarning`s to users + more easily. +- [#223](https://github.com/godaddy/tartufo/pull/223) New flags + (`-b64`/`--b64-entropy-score` and `-hex`/`--hex-entropy-score`) allow for user + tuning of the entropy reporting sensitivity. They default to 4.5 and 3.0, + respectively. + +## v2.8.1 - 11 October 2021 Bug fixes: -* [#222](https://github.com/godaddy/tartufo/pull/222) - Allow - exclude-entropy-patterns to match lines containing partial matches -- thanks - to @kbartholomew-godaddy for the work on this one! +- [#222](https://github.com/godaddy/tartufo/pull/222) - Allow + exclude-entropy-patterns to match lines containing partial matches -- thanks + to @kbartholomew-godaddy for the work on this one! -v2.8.0 - 14 September 2021 --------------------------- +## v2.8.0 - 14 September 2021 Features: -* [#83](https://github.com/godaddy/tartufo/issues/83) - New `scan-folder` command - to scan files without viewing as a git repository. +- [#83](https://github.com/godaddy/tartufo/issues/83) - New `scan-folder` command + to scan files without viewing as a git repository. Bug fixes: -* [#220](https://github.com/godaddy/tartufo/pull/220) - Display an explicit error - message when a requested branch is not found, as opposed to failing silently. +- [#220](https://github.com/godaddy/tartufo/pull/220) - Display an explicit error + message when a requested branch is not found, as opposed to failing silently. Misc: -* [#219](https://github.com/godaddy/tartufo/pull/219) - Incremental optimizations; - using `__slots__` for the `Issue` class to improve memory consumption, and - a small logic speed-up in when we generate the diff between commits. Both of - these should help at least some when it comes to scanning very large - repositories. +- [#219](https://github.com/godaddy/tartufo/pull/219) - Incremental optimizations; + using `__slots__` for the `Issue` class to improve memory consumption, and + a small logic speed-up in when we generate the diff between commits. Both of + these should help at least some when it comes to scanning very large + repositories. -v2.7.1 - 23 August 2021 ------------------------ +## v2.7.1 - 23 August 2021 Bug fixes: -* [#211](https://github.com/godaddy/tartufo/issues/211) - Attempt to fix a case - where output encoding could be set to cp1252 on Windows, which would cause a - crash if unicode characters were printed. Now issues are output as utf-8 - encoded bytestreams instead. +- [#211](https://github.com/godaddy/tartufo/issues/211) - Attempt to fix a case + where output encoding could be set to cp1252 on Windows, which would cause a + crash if unicode characters were printed. Now issues are output as utf-8 + encoded bytestreams instead. -v2.7.0 - 10 August 2021 ------------------------ +## v2.7.0 - 10 August 2021 Features: -* [#96](https://github.com/godaddy/tartufo/issues/96) - Explicitly handle - submodules. Basically, always ignore them by default. There is also a new - option to toggle this functionality: `--include-submodules` -* Add `exclude_entropy_patterns` to output +- [#96](https://github.com/godaddy/tartufo/issues/96) - Explicitly handle + submodules. Basically, always ignore them by default. There is also a new + option to toggle this functionality: `--include-submodules` +- Add `exclude_entropy_patterns` to output -v2.6.0 - 30 June 2021 ---------------------- +## v2.6.0 - 30 June 2021 Features: -* [#194](https://github.com/godaddy/tartufo/issues/194) - Half bugfix, half - feature. Now when an excluded signature in your config file is found as an - entropy match, tartufo will realize that and no longer report it as an issue. -* [#5](https://github.com/godaddy/tartufo/issues/5) - Remove the dependency on - `truffleHogRegexes`. This enables us to take full control of the default set - of regex checks. +- [#194](https://github.com/godaddy/tartufo/issues/194) - Half bugfix, half + feature. Now when an excluded signature in your config file is found as an + entropy match, tartufo will realize that and no longer report it as an issue. +- [#5](https://github.com/godaddy/tartufo/issues/5) - Remove the dependency on + `truffleHogRegexes`. This enables us to take full control of the default set + of regex checks. Bug fixes: -* [#179](https://github.com/godaddy/tartufo/issues/179) - Iterate over commits - in topological order, instead of date order. +- [#179](https://github.com/godaddy/tartufo/issues/179) - Iterate over commits + in topological order, instead of date order. -v2.5.0 - 15 June 2021 ---------------------- +## v2.5.0 - 15 June 2021 Features: -* [#145](https://github.com/godaddy/tartufo/issues/145) - Adds - `--exclude-path-patterns` and `--include-path-patterns` to simplify config in - a single .toml file -* [#87](https://github.com/godaddy/tartufo/issues/87) - Adds - `--exclude-entropy-patterns` to allow for regex-based exclusions +- [#145](https://github.com/godaddy/tartufo/issues/145) - Adds + `--exclude-path-patterns` and `--include-path-patterns` to simplify config in + a single .toml file +- [#87](https://github.com/godaddy/tartufo/issues/87) - Adds + `--exclude-entropy-patterns` to allow for regex-based exclusions Bug fixes: -* Write debug log entries when binary files are encountered -* Pinned all linting tools to specific versions and set all tox envs to use poetry -* Disabled codecov due to security breach +- Write debug log entries when binary files are encountered +- Pinned all linting tools to specific versions and set all tox envs to use poetry +- Disabled codecov due to security breach -v2.4.0 - 05 March 2021 ----------------------- +## v2.4.0 - 05 March 2021 Features: -* #76 - Added logging! You can now use the `-v`/`--verbose` option to increase - the amount of output from tartufo. Specifying multiple times will incrementally - increase what is output. -* Added a `--log-timestamps`/`--no-log-timestamps` option (default: True) so that - timestamps can be hidden in log messages. This could be helpful when, for example, - comparing the output from multiple runs. -* #107 - Added a `--compact`/`--no-compact` option for abbreviated output on found - issues, to avoid unintentionally spamming yourself. (Thanks to @dclayton-godaddy - for his work on this one) +- #76 - Added logging! You can now use the `-v`/`--verbose` option to increase + the amount of output from tartufo. Specifying multiple times will incrementally + increase what is output. +- Added a `--log-timestamps`/`--no-log-timestamps` option (default: True) so that + timestamps can be hidden in log messages. This could be helpful when, for example, + comparing the output from multiple runs. +- #107 - Added a `--compact`/`--no-compact` option for abbreviated output on found + issues, to avoid unintentionally spamming yourself. (Thanks to @dclayton-godaddy + for his work on this one) Bug fixes: -* #158 - The `--branch` option was broken and would not actually scan anything +- #158 - The `--branch` option was broken and would not actually scan anything -v2.3.1 - 16 February 2021 -------------------------- +## v2.3.1 - 16 February 2021 Bug fixes: -* Added rust toolchain to allow for building of latest cryptography +- Added rust toolchain to allow for building of latest cryptography Other changes: -* Added no-fetch to code snippets and note about what it does +- Added no-fetch to code snippets and note about what it does -v2.3.0 - 04 February 2021 -------------------------- +## v2.3.0 - 04 February 2021 Features: -* #42 - Report output on clean or successful scan. Add new `-q/--quiet` option to suppress output -* #43 - Report out of the list of exclusions. Add new `-v/--verbose` option to print exclusions -* #159 - Switched our primary development branch from `master` -> `main` -* Updated BFG refs from 1.13.0 to 1.13.2 +- #42 - Report output on clean or successful scan. Add new `-q/--quiet` option to suppress output +- #43 - Report out of the list of exclusions. Add new `-v/--verbose` option to print exclusions +- #159 - Switched our primary development branch from `master` -> `main` +- Updated BFG refs from 1.13.0 to 1.13.2 -v2.2.1 - 02 December 2020 -------------------------- +## v2.2.1 - 02 December 2020 Bugfixes: -* Rev build and release versions to match +- Rev build and release versions to match -v2.2.0 - 02 December 2020 -------------------------- +## v2.2.0 - 02 December 2020 Features: -* #119 - Added a new `--fetch`/`--no-fetch` option for local scans, controlling - whether the local clone is refreshed before scan. (Thanks @jgowdy!) -* #125 - Implement CODEOWNERS and auto-assignment to maintainers on PRs +- #119 - Added a new `--fetch`/`--no-fetch` option for local scans, controlling + whether the local clone is refreshed before scan. (Thanks @jgowdy!) +- #125 - Implement CODEOWNERS and auto-assignment to maintainers on PRs Bugfixes: -* #115 - Strange behavior can manifest with invalid sub-commands -* #117 - Ignore whitespace-only lines in exclusion files -* #118 - Local scans fetch remote origin -* #121 - Match rules specified with --git-rules-repo were not included in scans -* #140 - Ensure a valid output folder name in Windows +- #115 - Strange behavior can manifest with invalid sub-commands +- #117 - Ignore whitespace-only lines in exclusion files +- #118 - Local scans fetch remote origin +- #121 - Match rules specified with --git-rules-repo were not included in scans +- #140 - Ensure a valid output folder name in Windows Other changes: -* #95 - Run CI across Linux, Windows, and MacOS -* #130 - Added references to Tartufo GoogleGroups mailing list to docs -* Fixed testing in Pypy3 and explicitly added Python 3.9 support -* #134 - Documented the release process -* #143 - Updated GitHub Action hashes to newest rev to address https://github.blog/changelog/2020-10-01-github-actions-deprecating-set-env-and-add-path-commands/ where possible +- #95 - Run CI across Linux, Windows, and MacOS +- #130 - Added references to Tartufo GoogleGroups mailing list to docs +- Fixed testing in Pypy3 and explicitly added Python 3.9 support +- #134 - Documented the release process +- #143 - Updated GitHub Action hashes to newest rev to address https://github.blog/changelog/2020-10-01-github-actions-deprecating-set-env-and-add-path-commands/ where possible -v2.0.1 - 09 October 2020 ------------------------- +## v2.0.1 - 09 October 2020 -* Fix the Docker build & deploy +- Fix the Docker build & deploy -v2.0.0 - 09 October 2020 ------------------------- +## v2.0.0 - 09 October 2020 -* #74, #75 - Rewrote and refreshed the documentation for the new 2.0 usage (via - #111) +- #74, #75 - Rewrote and refreshed the documentation for the new 2.0 usage (via + #111) -v2.0.0a2 - 05 October 2020 --------------------------- +## v2.0.0a2 - 05 October 2020 This bugfix release is to take care of a handful of issues discovered during the initial alpha release for 2.0. -* #68 - Added consistent documentation through the codebase for classes, - methods, and all other API elements (via #92) -* #90 - Presenting a friendlier error message when there is an error interacting - with git (via #93) -* #94 - Fix tests that were failing on MacOS (via #97) -* #86 - Treat `tartufo.toml` preferentially over `pyproject.toml` when loading - config (via #101) -* #91 - Load config from scanned repositories. This functionality previously - existed in 1.x, but was missed during the rebuild for v2.0. This also resulted - in a bit of an overall rewrite of config file discovery to eliminate some - duplicated logic. (via #103) - -v2.0.0a1 - 18 November 2020 ---------------------------- +- #68 - Added consistent documentation through the codebase for classes, + methods, and all other API elements (via #92) +- #90 - Presenting a friendlier error message when there is an error interacting + with git (via #93) +- #94 - Fix tests that were failing on MacOS (via #97) +- #86 - Treat `tartufo.toml` preferentially over `pyproject.toml` when loading + config (via #101) +- #91 - Load config from scanned repositories. This functionality previously + existed in 1.x, but was missed during the rebuild for v2.0. This also resulted + in a bit of an overall rewrite of config file discovery to eliminate some + duplicated logic. (via #103) + +## v2.0.0a1 - 18 November 2020 This is a whole brand new tartufo! It's been entirely restructured, rewritten, retested, rebuilt, and remade! It's now more extensible, readable, testable, @@ -232,101 +229,94 @@ and usable. New features include: -* #2 - Verified/approved exclusions are now handled by way of hash signatures. - * These hashes are created on a combination of the matched string and filename - where the match was found. They are generated using the `BLAKE2` hashing - algorithm. (via #61) -* #7 - A working directory can now be specified to clone to when scanning a - remote repository. (via #81) -* #11 - Removed the `--cleanup` option and added a `--output-dir` in its place. - Issues are now written to disk only when specifically requested by providing - an output directory. (via #82) -* #39 - The functionality is now split into sub-commands (via #78) Available - sub-commands are, for now: - * pre-commit - * scan-local-repo - * scan-remote-repo -* The entire library has been refactored and nearly all logic has been put - into its most appropriate place. It should now be possible to use this whole - tool as a library, and not just a CLI application. (via #29, #65, #67, #70) +- #2 - Verified/approved exclusions are now handled by way of hash signatures. + - These hashes are created on a combination of the matched string and filename + where the match was found. They are generated using the `BLAKE2` hashing + algorithm. (via #61) +- #7 - A working directory can now be specified to clone to when scanning a + remote repository. (via #81) +- #11 - Removed the `--cleanup` option and added a `--output-dir` in its place. + Issues are now written to disk only when specifically requested by providing + an output directory. (via #82) +- #39 - The functionality is now split into sub-commands (via #78) Available + sub-commands are, for now: + - pre-commit + - scan-local-repo + - scan-remote-repo +- The entire library has been refactored and nearly all logic has been put + into its most appropriate place. It should now be possible to use this whole + tool as a library, and not just a CLI application. (via #29, #65, #67, #70) Bug fixes include: -* #55 - The tests no longer iterate over this repository's history; everything - has been sufficiently split out to make it more testable without needing to - look at an actual git history. (via #70) -* #72 - Specifying a non-git path no longer causes an error (via #80) +- #55 - The tests no longer iterate over this repository's history; everything + has been sufficiently split out to make it more testable without needing to + look at an actual git history. (via #70) +- #72 - Specifying a non-git path no longer causes an error (via #80) Other changes: -* Issues found during the scan are now represented by a class, instead of some - amorphous dictionary (via #29) - * Further, since a single `Issue` is instantiated per match, the output key - for the matches has changed from `strings_found` to `matched_string`. -* #25 - Set up full documentation on Read The Docs (via #38) -* #30 - Support for Python 2 has been dropped (via #31) -* #58 - CI is now handled by GitHub Actions (via #59) +- Issues found during the scan are now represented by a class, instead of some + amorphous dictionary (via #29) + - Further, since a single `Issue` is instantiated per match, the output key + for the matches has changed from `strings_found` to `matched_string`. +- #25 - Set up full documentation on Read The Docs (via #38) +- #30 - Support for Python 2 has been dropped (via #31) +- #58 - CI is now handled by GitHub Actions (via #59) -v1.1.2 - 21 April 2020 ----------------------- +## v1.1.2 - 21 April 2020 -* #48 (Backport of #45 & #46) - * Documented Docker usage - * Small fixes to Docker to allow SSH clones and avoid scanning tartufo itself -* Docs have been backported from the `master` branch. +- #48 (Backport of #45 & #46) + - Documented Docker usage + - Small fixes to Docker to allow SSH clones and avoid scanning tartufo itself +- Docs have been backported from the `master` branch. -v1.1.1 - 13 December 2019 -------------------------- +## v1.1.1 - 13 December 2019 -* Fix the docs and pre-commit hook to use hyphens in CLI arguments, as opposed - to underscores. +- Fix the docs and pre-commit hook to use hyphens in CLI arguments, as opposed + to underscores. -v1.1.0 - 27 November 2019 -------------------------- +## v1.1.0 - 27 November 2019 -* Support reading config from `tartufo.toml` for non-Python projects -* #17 - A separate repository can be used for storing rules files -* #18 - Read the `pyproject.toml` or `tartufo.toml` from the repo being scanned +- Support reading config from `tartufo.toml` for non-Python projects +- #17 - A separate repository can be used for storing rules files +- #18 - Read the `pyproject.toml` or `tartufo.toml` from the repo being scanned -v1.0.2 - 19 November 2019 -------------------------- +## v1.0.2 - 19 November 2019 This release is essentially the same as the v1.0.0 release, but with a new number. Unfortunately, we had historical releases versioned as v1.0.0 and v1.0.1. Due to limitations in PyPI (https://pypi.org/help/#file-name-reuse), even if a previous release has been deleted, the version number may not be reused. -v1.0.0 - 19 November 2019 -------------------------- +## v1.0.0 - 19 November 2019 Version 1.0.0! Initial stable release! -* Finished the "hard fork" process, so that our project is now independent of `truffleHog`. -* #13 - Tests are now split into multiple files/classes -* #14 - `tartufo` is now configurable via `pyproject.toml` -* #15 - Code is fully type annotated -* #16 - Fully fleshed out "Community Health" files -* #20 - Code is now fully formatted by `black` +- Finished the "hard fork" process, so that our project is now independent of `truffleHog`. +- #13 - Tests are now split into multiple files/classes +- #14 - `tartufo` is now configurable via `pyproject.toml` +- #15 - Code is fully type annotated +- #16 - Fully fleshed out "Community Health" files +- #20 - Code is now fully formatted by `black` -v0.0.2 - 23 October 2019 ------------------------- +## v0.0.2 - 23 October 2019 Automated Docker builds! -* Docker images are built and pushed automatically to https://hub.docker.com/r/godaddy/tartufo -* The version of these images has been synchronized with the Python version via the VERSION file -* Gave the Python package a more verbose long description for PyPi, straight from the README. +- Docker images are built and pushed automatically to https://hub.docker.com/r/godaddy/tartufo +- The version of these images has been synchronized with the Python version via the VERSION file +- Gave the Python package a more verbose long description for PyPi, straight from the README. -v0.0.1 - 23 October 2019 ------------------------- +## v0.0.1 - 23 October 2019 This is the first public release of `tartufo`, which has been forked off from `truffleHog`. The primary new features/bugfixes include: -* Renamed everything to `tartufo` -* #1 - Additive whitelist/blacklist support -* #4 - `--pre_commit` support -* #6 - Documented the `--cleanup` switch which cleans up files in `/tmp` -* #10 - Running `tartufo` with no arguments would produce an error -* Added support for https://pre-commit.com/ style hooks +- Renamed everything to `tartufo` +- #1 - Additive whitelist/blacklist support +- #4 - `--pre_commit` support +- #6 - Documented the `--cleanup` switch which cleans up files in `/tmp` +- #10 - Running `tartufo` with no arguments would produce an error +- Added support for https://pre-commit.com/ style hooks