-
Notifications
You must be signed in to change notification settings - Fork 1.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[bug] - Fix the starting index value for plus line check. #734
Conversation
ahrav
commented
Aug 24, 2022
Which repo are you running against to get this crash? I think a better place to fix this would be to check the slice length at: trufflehog/pkg/gitparse/gitparse.go Line 229 in 70a40cd
Starting at :3 will include the b/ in the path which we want to exclude |
Nevermind on the repo question. I see it in the output. |
I ran it against the Oh nvm we do want it to be 6 but you are suggesting checking that len first. |
I'm curious what line is getting caught that is too short, but the line length check should be 6. That just got overlooked and no cases came up to break it. I was thinking something like this:
|
Tangent, but the That should be more performant and convenient than converting to strings or checking slice lengths and comparing. (Something I learned recently but not necessarily applicable here). |
I know it's a small change, but would it be possible to add a test to prevent future regressions? Maybe in a follow-up PR if this is urgent. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good. I like the additional tests.
Add Honeycomb detector by @MNThomson in trufflesecurity/trufflehog#687 Feature/scalr detector by @lonmarsDev in trufflesecurity/trufflehog#519 added websitepulse detector by @lonmarsDev in trufflesecurity/trufflehog#516 added tokeet detector by @lonmarsDev in trufflesecurity/trufflehog#515 Feature/salesmate detector by @lonmarsDev in trufflesecurity/trufflehog#514 added kanbantool detector by @lonmarsDev in trufflesecurity/trufflehog#513 added demio detector by @lonmarsDev in trufflesecurity/trufflehog#512 added heatmapapi detector by @lonmarsDev in trufflesecurity/trufflehog#509 added getresponse detector by @lonmarsDev in trufflesecurity/trufflehog#506 added codeclimate detector by @lonmarsDev in trufflesecurity/trufflehog#484 added flightlabs detector by @ladybug0125 in trufflesecurity/trufflehog#475 added prodpad detector by @lonmarsDev in trufflesecurity/trufflehog#470 added lemlist detector by @lonmarsDev in trufflesecurity/trufflehog#469 added formsite detector by @lonmarsDev in trufflesecurity/trufflehog#467 added docparser detector by @lonmarsDev in trufflesecurity/trufflehog#458 added parseur detector by @lonmarsDev in trufflesecurity/trufflehog#454 Added ecostruxureit detector by @roxanne-tampus in trufflesecurity/trufflehog#555 Added transferwise detector by @roxanne-tampus in trufflesecurity/trufflehog#558 Added holistic detector by @roxanne-tampus in trufflesecurity/trufflehog#556 Added twist detector by @roxanne-tampus in trufflesecurity/trufflehog#549 Added monkeylearn detector by @roxanne-tampus in trufflesecurity/trufflehog#553 Added gtmetrix detector by @roxanne-tampus in trufflesecurity/trufflehog#554 Added duply detector by @roxanne-tampus in trufflesecurity/trufflehog#552 Added braintreepayments detector by @roxanne-tampus in trufflesecurity/trufflehog#541 added apilayer scanner by @lonmarsDev in trufflesecurity/trufflehog#368 added appointed scanner by @lonmarsDev in trufflesecurity/trufflehog#425 [bug] - Fix the starting index value for plus line check. by @ahrav in trufflesecurity/trufflehog#734