Skip to content

Commit a87ec21

Browse files
kellydunnkellydunn
authored
Merge branch 'main' into gha-fix
2 parents e4e9260 + 1bbf390 commit a87ec21

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

62 files changed

+5292
-292
lines changed

CODEOWNERS

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,8 @@ pkg/detectors/ @trufflesecurity/OSS
2020
pkg/common/ @trufflesecurity/OSS
2121
pkg/custom_detectors/ @trufflesecurity/OSS
2222
pkg/analzyers/ @trufflesecurity/OSS
23+
pkg/engine/defaults/defaults.go @trufflesecurity/OSS
24+
pkg/engine/defaults/defaults_test.go @trufflesecurity/OSS
2325

2426
# critical detectors
2527
pkg/detectors/aws/ @trufflesecurity/backend

go.mod

Lines changed: 38 additions & 35 deletions
Original file line numberDiff line numberDiff line change
@@ -16,19 +16,19 @@ require (
1616
github.com/TheZeroSlave/zapsentry v1.23.0
1717
github.com/adrg/strutil v0.3.1
1818
github.com/alecthomas/kingpin/v2 v2.4.0
19-
github.com/avast/apkparser v0.0.0-20250307094510-e2100ee9c0f5
20-
github.com/aws/aws-sdk-go-v2 v1.36.3
21-
github.com/aws/aws-sdk-go-v2/config v1.29.14
22-
github.com/aws/aws-sdk-go-v2/credentials v1.17.67
23-
github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.17.75
24-
github.com/aws/aws-sdk-go-v2/service/s3 v1.79.3
25-
github.com/aws/aws-sdk-go-v2/service/sns v1.34.4
26-
github.com/aws/aws-sdk-go-v2/service/sts v1.33.19
19+
github.com/avast/apkparser v0.0.0-20250530053210-166ba1767cb9
20+
github.com/aws/aws-sdk-go-v2 v1.36.4
21+
github.com/aws/aws-sdk-go-v2/config v1.29.16
22+
github.com/aws/aws-sdk-go-v2/credentials v1.17.69
23+
github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.17.79
24+
github.com/aws/aws-sdk-go-v2/service/s3 v1.80.2
25+
github.com/aws/aws-sdk-go-v2/service/sns v1.34.6
26+
github.com/aws/aws-sdk-go-v2/service/sts v1.33.21
2727
github.com/aws/smithy-go v1.22.3
2828
github.com/aymanbagabas/go-osc52 v1.2.1
2929
github.com/bill-rich/go-syslog v0.0.0-20220413021637-49edb52a574c
3030
github.com/bitfinexcom/bitfinex-api-go v0.0.0-20210608095005-9e0b26f200fb
31-
github.com/bradleyfalzon/ghinstallation/v2 v2.12.0
31+
github.com/bradleyfalzon/ghinstallation/v2 v2.14.0
3232
github.com/brianvoe/gofakeit/v7 v7.2.1
3333
github.com/charmbracelet/bubbles v0.18.0
3434
github.com/charmbracelet/bubbletea v1.3.4
@@ -48,7 +48,7 @@ require (
4848
github.com/go-errors/errors v1.5.1
4949
github.com/go-git/go-git/v5 v5.13.2
5050
github.com/go-ldap/ldap/v3 v3.4.11
51-
github.com/go-logr/logr v1.4.2
51+
github.com/go-logr/logr v1.4.3
5252
github.com/go-logr/zapr v1.3.0
5353
github.com/go-redis/redis v6.15.9+incompatible
5454
github.com/go-sql-driver/mysql v1.8.1
@@ -58,7 +58,7 @@ require (
5858
github.com/google/go-containerregistry v0.20.3
5959
github.com/google/go-github/v67 v67.0.0
6060
github.com/google/uuid v1.6.0
61-
github.com/googleapis/gax-go/v2 v2.14.1
61+
github.com/googleapis/gax-go/v2 v2.14.2
6262
github.com/hashicorp/go-retryablehttp v0.7.7
6363
github.com/hashicorp/golang-lru/v2 v2.0.7
6464
github.com/jedib0t/go-pretty/v6 v6.6.7
@@ -105,11 +105,11 @@ require (
105105
go.uber.org/zap v1.27.0
106106
golang.org/x/crypto v0.37.0
107107
golang.org/x/net v0.39.0
108-
golang.org/x/oauth2 v0.29.0
109-
golang.org/x/sync v0.13.0
108+
golang.org/x/oauth2 v0.30.0
109+
golang.org/x/sync v0.14.0
110110
golang.org/x/text v0.24.0
111111
golang.org/x/time v0.11.0
112-
google.golang.org/api v0.229.0
112+
google.golang.org/api v0.232.0
113113
google.golang.org/protobuf v1.36.6
114114
gopkg.in/h2non/gock.v1 v1.1.2
115115
gopkg.in/yaml.v2 v2.4.0
@@ -120,22 +120,22 @@ require (
120120
)
121121

122122
require (
123-
cel.dev/expr v0.19.2 // indirect
123+
cel.dev/expr v0.20.0 // indirect
124124
cloud.google.com/go v0.120.0 // indirect
125-
cloud.google.com/go/auth v0.16.0 // indirect
125+
cloud.google.com/go/auth v0.16.1 // indirect
126126
cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect
127127
cloud.google.com/go/compute/metadata v0.6.0 // indirect
128-
cloud.google.com/go/iam v1.5.0 // indirect
129-
cloud.google.com/go/longrunning v0.6.6 // indirect
130-
cloud.google.com/go/monitoring v1.24.0 // indirect
128+
cloud.google.com/go/iam v1.5.2 // indirect
129+
cloud.google.com/go/longrunning v0.6.7 // indirect
130+
cloud.google.com/go/monitoring v1.24.2 // indirect
131131
dario.cat/mergo v1.0.0 // indirect
132132
filippo.io/edwards25519 v1.1.0 // indirect
133133
github.com/AdaLogics/go-fuzz-headers v0.0.0-20230811130428-ced1acdcaa24 // indirect
134134
github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1 // indirect
135135
github.com/Azure/go-ntlmssp v0.0.0-20221128193559-754e69321358 // indirect
136136
github.com/AzureAD/microsoft-authentication-library-for-go v1.3.2 // indirect
137137
github.com/DataDog/zstd v1.5.5 // indirect
138-
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.25.0 // indirect
138+
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.26.0 // indirect
139139
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric v0.50.0 // indirect
140140
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping v0.50.0 // indirect
141141
github.com/Microsoft/go-winio v0.6.2 // indirect
@@ -146,17 +146,17 @@ require (
146146
github.com/andybalholm/brotli v1.1.1 // indirect
147147
github.com/atotto/clipboard v0.1.4 // indirect
148148
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.6.10 // indirect
149-
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.30 // indirect
150-
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.34 // indirect
151-
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.34 // indirect
149+
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.31 // indirect
150+
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.35 // indirect
151+
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.35 // indirect
152152
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.3 // indirect
153-
github.com/aws/aws-sdk-go-v2/internal/v4a v1.3.34 // indirect
153+
github.com/aws/aws-sdk-go-v2/internal/v4a v1.3.35 // indirect
154154
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.12.3 // indirect
155-
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.7.1 // indirect
156-
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.12.15 // indirect
157-
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.18.15 // indirect
158-
github.com/aws/aws-sdk-go-v2/service/sso v1.25.3 // indirect
159-
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.30.1 // indirect
155+
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.7.3 // indirect
156+
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.12.16 // indirect
157+
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.18.16 // indirect
158+
github.com/aws/aws-sdk-go-v2/service/sso v1.25.4 // indirect
159+
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.30.2 // indirect
160160
github.com/aymanbagabas/go-osc52/v2 v2.0.1 // indirect
161161
github.com/aymerick/douceur v0.2.0 // indirect
162162
github.com/beorn7/perks v1.0.1 // indirect
@@ -199,7 +199,7 @@ require (
199199
github.com/go-asn1-ber/asn1-ber v1.5.8-0.20250403174932-29230038a667 // indirect
200200
github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376 // indirect
201201
github.com/go-git/go-billy/v5 v5.6.2 // indirect
202-
github.com/go-jose/go-jose/v4 v4.0.2 // indirect
202+
github.com/go-jose/go-jose/v4 v4.0.4 // indirect
203203
github.com/go-logr/stdr v1.2.2 // indirect
204204
github.com/go-ole/go-ole v1.2.6 // indirect
205205
github.com/gofrs/flock v0.12.1 // indirect
@@ -210,6 +210,7 @@ require (
210210
github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
211211
github.com/golang/snappy v0.0.4 // indirect
212212
github.com/google/go-github/v66 v66.0.0 // indirect
213+
github.com/google/go-github/v69 v69.0.0 // indirect
213214
github.com/google/go-querystring v1.1.0 // indirect
214215
github.com/google/pprof v0.0.0-20240227163752-401108e1b7e7 // indirect
215216
github.com/google/s2a-go v0.1.9 // indirect
@@ -226,7 +227,7 @@ require (
226227
github.com/jpillora/s3 v1.1.4 // indirect
227228
github.com/kevinburke/ssh_config v1.2.0 // indirect
228229
github.com/kjk/lzma v0.0.0-20161016003348-3fd93898850d // indirect
229-
github.com/klauspost/compress v1.17.11 // indirect
230+
github.com/klauspost/compress v1.18.0 // indirect
230231
github.com/lucasb-eyer/go-colorful v1.2.0 // indirect
231232
github.com/lufia/plan9stats v0.0.0-20211012122336-39d0f177ccd0 // indirect
232233
github.com/magiconair/properties v1.8.7 // indirect
@@ -270,6 +271,7 @@ require (
270271
github.com/sirupsen/logrus v1.9.3 // indirect
271272
github.com/skeema/knownhosts v1.3.0 // indirect
272273
github.com/sorairolake/lzip-go v0.3.5 // indirect
274+
github.com/spiffe/go-spiffe/v2 v2.5.0 // indirect
273275
github.com/stretchr/objx v0.5.2 // indirect
274276
github.com/tetratelabs/wazero v1.9.0 // indirect
275277
github.com/therootcompany/xz v1.0.1 // indirect
@@ -290,6 +292,7 @@ require (
290292
github.com/yuin/goldmark v1.5.4 // indirect
291293
github.com/yuin/goldmark-emoji v1.0.2 // indirect
292294
github.com/yusufpapurcu/wmi v1.2.3 // indirect
295+
github.com/zeebo/errs v1.4.0 // indirect
293296
go.einride.tech/aip v0.60.0 // indirect
294297
go.opentelemetry.io/auto/sdk v1.1.0 // indirect
295298
go.opentelemetry.io/contrib/detectors/gcp v1.34.0 // indirect
@@ -308,10 +311,10 @@ require (
308311
golang.org/x/sys v0.32.0 // indirect
309312
golang.org/x/term v0.31.0 // indirect
310313
golang.org/x/tools v0.29.0 // indirect
311-
google.golang.org/genproto v0.0.0-20250303144028-a0af3efb3deb // indirect
312-
google.golang.org/genproto/googleapis/api v0.0.0-20250414145226-207652e42e2e // indirect
313-
google.golang.org/genproto/googleapis/rpc v0.0.0-20250414145226-207652e42e2e // indirect
314-
google.golang.org/grpc v1.71.1 // indirect
314+
google.golang.org/genproto v0.0.0-20250505200425-f936aa4a68b2 // indirect
315+
google.golang.org/genproto/googleapis/api v0.0.0-20250505200425-f936aa4a68b2 // indirect
316+
google.golang.org/genproto/googleapis/rpc v0.0.0-20250505200425-f936aa4a68b2 // indirect
317+
google.golang.org/grpc v1.72.0 // indirect
315318
gopkg.in/warnings.v0 v0.1.2 // indirect
316319
pault.ag/go/topsort v0.1.1 // indirect
317320
)

0 commit comments

Comments
 (0)