Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Keyword Detector is not used in 0.10.5 #97

Closed
Tioborto opened this issue Nov 26, 2018 · 7 comments
Closed

Keyword Detector is not used in 0.10.5 #97

Tioborto opened this issue Nov 26, 2018 · 7 comments
Labels
question The issue is a technical question related to the project.

Comments

@Tioborto
Copy link

Hello,

When i run a scan on a repo, KeywordDetector is not used.
If it's normal, why it's disable ?

{
"exclude_regex": null,
"generated_at": "2018-11-26T09:42:29Z",
"plugins_used": [
{
"base64_limit": 4.5,
"name": "Base64HighEntropyString"
},
{
"name": "BasicAuthDetector"
},
{
"hex_limit": 3,
"name": "HexHighEntropyString"
},
{
"name": "PrivateKeyDetector"
}
],
"results": {},
"version": "0.10.5"
}

Thank you
@KevinHock
Copy link
Collaborator

Hi @Tioborto

Sorry about that, one other person also asked about this: 6d98c81

We turned it off b/c the false-positive was too high, we have plans to re-enable after #86 is merged 👍

@Tioborto
Copy link
Author

Hello @KevinHock ,
For when do you think it will be over ? We are very eager to test this new version

@KevinHock
Copy link
Collaborator

Sorry for the late reply @Tioborto, we're hoping by the end of December, after doing more internal testing.

@rhinoceros
Copy link

rhinoceros commented Jan 3, 2019
edited
Loading

I found the same problem.
pre-commit 1.13.0
.pre-commit-config.yaml

-   repo: git@github.com:Yelp/detect-secrets
    rev: v0.11.0
    hooks:
    -   id: detect-secrets
        args: ['--baseline', '.secrets.baseline']
        exclude: .*/tests/.*

a.conf

bogon:my-git-repo User1$ cat a.conf 
xx=dXNlcjogd2FuZ3huCnh4OiAKcGFzc3dvcmQ6IHdhbmd4bjEyMwo=
password: xxx123
username: abc
password: aaaa
password: 123456
API_KEY = "blah-blah-but-actually-not-secret"

commit command

bogon:my-git-repo User1$ git add a.conf 
bogon:my-git-repo User1$ git commit -m"test"
Detect secrets...........................................................Passed
[xx 589b342] test
 1 file changed, 1 insertion(+), 2 deletions(-)

@KevinHock
Copy link
Collaborator

#86 just got approved an hour ago, probably gonna merge/bump tomorrow or Friday.

You definitely would not want the original version though, just saying :)

@KevinHock
Copy link
Collaborator

Finally released the new version of Keyword detector in 0.11.2, let me know what you think @rhinoceros @Tioborto @andrewscott-vibrato :) 👍 🥂 🎉 🎈 🎂

@rhinoceros
Copy link

Finally released the new version of Keyword detector in 0.11.2, let me know what you think @rhinoceros @Tioborto @andrewscott-vibrato :) 👍 🥂 🎉 🎈 🎂

It's works now. Thanks.

@KevinHock KevinHock added the question The issue is a technical question related to the project. label May 16, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question The issue is a technical question related to the project.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@rhinoceros @KevinHock @Tioborto