Bump version to 0.2.0; update build script and documentation for new features and improvements

Author: rafabd1

.github/workflows/release.yml

@@ -30,17 +30,14 @@ jobs:
 
       - name: Build for all platforms
         run: |
-          BUILD_DATE=$(date -u '+%Y-%m-%d %H:%M:%S UTC')
-          GIT_COMMIT=$(git rev-parse --short HEAD)
-          
           # Build for Windows
-          GOOS=windows GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=${{ env.VERSION }} -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=${BUILD_DATE}' -X github.com/rafabd1/SecretHound/cmd.GitCommit=${GIT_COMMIT}" -o secrethound-${{ env.VERSION }}-windows-amd64.exe ./cmd/secrethound/
+          GOOS=windows GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=${{ env.VERSION }}" -o secrethound-${{ env.VERSION }}-windows-amd64.exe ./cmd/secrethound/
           
           # Build for Linux
-          GOOS=linux GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=${{ env.VERSION }} -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=${BUILD_DATE}' -X github.com/rafabd1/SecretHound/cmd.GitCommit=${GIT_COMMIT}" -o secrethound-${{ env.VERSION }}-linux-amd64 ./cmd/secrethound/
+          GOOS=linux GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=${{ env.VERSION }}" -o secrethound-${{ env.VERSION }}-linux-amd64 ./cmd/secrethound/
           
           # Build for macOS
-          GOOS=darwin GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=${{ env.VERSION }} -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=${BUILD_DATE}' -X github.com/rafabd1/SecretHound/cmd.GitCommit=${GIT_COMMIT}" -o secrethound-${{ env.VERSION }}-darwin-amd64 ./cmd/secrethound/
+          GOOS=darwin GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=${{ env.VERSION }}" -o secrethound-${{ env.VERSION }}-darwin-amd64 ./cmd/secrethound/
 
       - name: Create Release
         id: create_release
@@ -56,35 +53,41 @@ jobs:
             secrethound-${{ env.VERSION }}-linux-amd64
             secrethound-${{ env.VERSION }}-darwin-amd64
           body: |
-            # SecretHound v${{ env.VERSION }}
-            
-            ## Improvements
-            - Removed global execution timeout allowing scans to run without time constraints
-            - Enhanced error logging with better visibility for critical errors
-            - Improved log output reducing redundant messages and clarifying statistics
-            - Fixed build information display in version command
-            - Added proper build date and git commit tracking
-            - Optimized progress display with cleaner output
-            
-            ## Bug Fixes
-            - Fixed issue with timeout prematurely ending large scans
-            - Resolved silent errors in verbose mode
-            
-            ## Installation
-            
-            Download the appropriate binary for your platform and make it executable.
-            
-            For Linux/macOS:
-            ```
-            chmod +x secrethound-${{ env.VERSION }}-linux-amd64
-            ./secrethound-${{ env.VERSION }}-linux-amd64
-            ```
-            
-            For Go users:
-            ```
-            go install github.com/rafabd1/SecretHound/cmd/secrethound@latest
-            ```
-            
-            ## Documentation
-            
-            See the [documentation](https://github.com/rafabd1/SecretHound/tree/main/docs) for details on usage.
+                # SecretHound v${{ env.VERSION }}
+                
+                ## Improvements
+                
+                - Added support for ignoring SSL/TLS certificate verification with `--insecure`
+                - Complete overhaul of the regex pattern system
+                - Added support for custom HTTP headers with `-H/--header`
+                - Fixed timeout and concurrency issues
+                - Fixed `-r/--retries` parameter that wasn't being applied
+                - Reorganized patterns package for better maintenance
+                - Redesigned error handling system
+                - Temporarily disabled `--regex-file` option
+                
+                ## Bug Fixes
+                
+                - Fixed issue with URLs having invalid certificates
+                - Resolved timeout problems in large scans
+                - Improved synchronization between threads to prevent resource leaks
+                - Fixed false positive issues in certain regex patterns
+                
+                ## Installation
+                
+                Download the appropriate binary for your platform and make it executable.
+                
+                For Linux/macOS:
+                ```
+                chmod +x secrethound-${{ env.VERSION }}-linux-amd64
+                ./secrethound-${{ env.VERSION }}-linux-amd64
+                ```
+                
+                For Go users:
+                ```
+                go install github.com/rafabd1/SecretHound/cmd/secrethound@latest
+                ```
+                
+                ## Documentation
+                
+                See the [documentation](https://github.com/rafabd1/SecretHound/tree/main/docs) for usage details.

CHANGELOG.md

@@ -1,21 +1,30 @@
 # SecretHound Changelog
 
-<<<<<<< HEAD
-## v0.1.2 (Unreleased)
+## v0.2.0 (2025-04-03)
 
 ### Improvements
-- Added 50+ new regex patterns for detecting additional types of secrets
-- Added support for Machine Learning service API keys (OpenAI, HuggingFace, Anthropic, etc.)
-- Added patterns for CI/CD and DevOps tools (Jenkins, CircleCI, Docker Hub, etc.)
-- Enhanced detection of database connection strings
-- Added exclusion patterns to reduce false positives
-- Organized patterns into logical categories
-- Updated documentation with comprehensive list of supported secrets
-
-## v0.1.1 (2024-07-05)
-=======
+- Added support for skipping SSL/TLS certificate verification with `--insecure`
+- Complete redesign of the regex pattern system
+- Added support for custom HTTP headers with `-H/--header`
+- Fixed timeout and concurrency issues
+- Fixed `-r/--retries` parameter that wasn't being applied
+- Reorganized patterns package for better maintenance
+- Redesigned error handling system
+- Temporarily disabled `--regex-file` option
+
+### Bug Fixes
+- Fixed issue with URLs having invalid certificates
+- Resolved timeout problems in large scans
+- Improved thread synchronization to prevent resource leaks
+- Fixed false positive issues in certain regex patterns
+
+### Technical Changes
+- Added new error type for certificate issues
+- Improved HTTP response handling logic
+- Added utility functions for certificate validation
+- Optimized regex patterns for better performance and accuracy
+
 ## v0.1.1 (2025-03-28)
->>>>>>> d5bcfdec4f2010ce44706453f011967cd40b343f
 
 ### Improvements
 - Removed global execution timeout allowing scans to run without time constraints

README.md

@@ -18,13 +18,13 @@
 ## Features
 
 - **Multi-Source Scanning**: Process remote URLs, local files, and entire directories
-- **Intelligent Detection**: 100+ regex patterns to identify different types of secrets
+- **Intelligent Detection**: 50+ regex patterns to identify different types of secrets
 - **Concurrent Processing**: Fast multi-threaded architecture for efficient scanning
 - **Domain-Aware Scheduling**: Smart distribution of requests to avoid rate limiting
 - **WAF/Rate Limit Evasion**: Automatic detection and handling of security measures
 - **Context Analysis**: Reduces false positives by analyzing surrounding code
 - **Real-Time Progress**: Live updates with progress bar and statistics
-- **Multiple Output Formats**: Output to JSON or formatted text
+- **Multiple Output Formats**: Output to formatted text
 
 ## Installation
 
@@ -109,7 +109,7 @@ SecretHound supports the following options:
 | `-n, --concurrency` | Number of concurrent workers | 10 |
 | `-l, --rate-limit` | Requests per second per domain (0 = auto) | 0 |
 | `-H, --header` | Custom HTTP header (format: 'Name: Value') | - |
-| `--regex-file` | File containing custom regex patterns | - |
+| `--insecure` | Disable SSL/TLS certificate verification | false |
 | `-v, --verbose` | Enable verbose output | false |
 
 ## Documentation

build.sh

@@ -1,18 +1,15 @@
 #!/bin/bash
 
 # Build script for SecretHound
-VERSION="0.1.1"
-BUILD_DATE=$(date -u '+%Y-%m-%d %H:%M:%S UTC')
-GIT_COMMIT=$(git rev-parse --short HEAD 2>/dev/null || echo "unknown")
+VERSION="0.2.0"
 
 # Display build info
 echo "Building SecretHound $VERSION"
-echo "Build Date: $BUILD_DATE"
-echo "Git Commit: $GIT_COMMIT"
+echo "Platform: $(go env GOOS)/$(go env GOARCH)"
 
 # Build for current platform
 echo "Building for $(go env GOOS)/$(go env GOARCH)..."
-go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=$BUILD_DATE' -X github.com/rafabd1/SecretHound/cmd.GitCommit=$GIT_COMMIT" -o secrethound ./cmd/secrethound/
+go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION" -o secrethound ./cmd/secrethound/
 
 echo "Build complete: $(pwd)/secrethound"
 
@@ -24,13 +21,13 @@ if [ "$1" == "release" ]; then
     mkdir -p release
 
     # Build for Windows
-    GOOS=windows GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=$BUILD_DATE' -X github.com/rafabd1/SecretHound/cmd.GitCommit=$GIT_COMMIT" -o release/secrethound-$VERSION-windows-amd64.exe ./cmd/secrethound/
+    GOOS=windows GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION" -o release/secrethound-$VERSION-windows-amd64.exe ./cmd/secrethound/
 
     # Build for Linux
-    GOOS=linux GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=$BUILD_DATE' -X github.com/rafabd1/SecretHound/cmd.GitCommit=$GIT_COMMIT" -o release/secrethound-$VERSION-linux-amd64 ./cmd/secrethound/
+    GOOS=linux GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION" -o release/secrethound-$VERSION-linux-amd64 ./cmd/secrethound/
 
     # Build for macOS
-    GOOS=darwin GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION -X 'github.com/rafabd1/SecretHound/cmd.BuildDate=$BUILD_DATE' -X github.com/rafabd1/SecretHound/cmd.GitCommit=$GIT_COMMIT" -o release/secrethound-$VERSION-darwin-amd64 ./cmd/secrethound/
+    GOOS=darwin GOARCH=amd64 go build -ldflags "-X github.com/rafabd1/SecretHound/cmd.Version=$VERSION" -o release/secrethound-$VERSION-darwin-amd64 ./cmd/secrethound/
 
     echo "Release builds complete in $(pwd)/release/"
 fi

cmd/version.go

@@ -10,9 +10,7 @@ import (
 
 // Build information
 var (
-	Version   = "0.1.1"
-	BuildDate = "undefined"
-	GitCommit = "undefined"
+	Version = "0.2.0"
 )
 
 // versionCmd represents the version command
@@ -26,8 +24,6 @@ var versionCmd = &cobra.Command{
 
 		fmt.Println(cyan("SecretHound Version Information"))
 		fmt.Printf("%s: %s\n", cyan("Version"), green(Version))
-		fmt.Printf("%s: %s\n", cyan("Build Date"), green(BuildDate))
-		fmt.Printf("%s: %s\n", cyan("Git Commit"), green(GitCommit))
 		fmt.Printf("%s: %s\n", cyan("Go Version"), green(runtime.Version()))
 		fmt.Printf("%s: %s/%s\n", cyan("Platform"), green(runtime.GOOS), green(runtime.GOARCH))
 	},

docs/README.md

@@ -97,12 +97,12 @@ secrethound -i /path/to/directory
 Save results to a file:
 
 ```bash
-secrethound -i url-list.txt -o results.json
+secrethound -i url-list.txt -o results.txt
 ```
 
 ## Command Line Options
 
-The scan command supports the following options:
+SecretHound supports the following options:
 
 | Flag | Description | Default |
 |------|-------------|---------|
@@ -112,7 +112,8 @@ The scan command supports the following options:
 | `-r, --retries` | Maximum number of retry attempts | 3 |
 | `-n, --concurrency` | Number of concurrent workers | 10 |
 | `-l, --rate-limit` | Requests per second per domain (0 = auto) | 0 |
-| `--regex-file` | File containing custom regex patterns | - |
+| `-H, --header` | Custom HTTP header (format: 'Name: Value') | - |
+| `--insecure` | Disable SSL/TLS certificate verification | false |
 | `-v, --verbose` | Enable verbose output | false |
 
 ## Input Sources
@@ -126,38 +127,17 @@ SecretHound can process various input sources:
 
 Lists can be specified with the `-i` flag or by providing the filepath directly as an argument. URLs can be provided directly as arguments.
 
-## Custom Regex Patterns
-
-By default, SecretHound uses its built-in regex patterns to detect secrets. You can provide your own patterns by creating a file with the following format:
-
-```
-REGEX_PATTERNS = {
-    "name": "regex",
-    "other": "other_regex"
-}
-```
-
-Example:
-
-```
-REGEX_PATTERNS = {
-    "aws_key": "AKIA[0-9A-Z]{16}",
-    "password": "(?i)password['\"]?\\s*[:=]\\s*['\"]([^'\"]+)['\"]"
-}
-```
-
-A sample file is available in `examples/regex.txt`.
-
 ## Supported Patterns
 
-SecretHound can detect dozens of different types of secrets, including:
+SecretHound can detect over 100 different types of secrets, including:
 
 - API keys (Google, AWS, Firebase, etc.)
 - Access tokens (Facebook, Twitter, GitHub, etc.)
 - Credentials (passwords, Basic and Bearer tokens)
 - Private keys (RSA, SSH, PGP)
 - JWT tokens
 - Sensitive URLs (Firebase, AWS S3)
+- Database connection strings
 - And much more!
 
 For a complete list of supported regexes, see the [Supported Secrets](SUPPORTED_SECRETS.md) document.