cloud-gov/caulking

Issues

• Local hooks check doesn't know about global config

  #37 opened 8 months ago by bengerman13
  4

• Simplify caulking installation and upgrades

  #5 opened a year ago by tammersaleh
  7

• Address all GitHub secrets detection alarms

  #82 opened 2 years ago by pburkholder
  0

• Caulking audit should confirm local copy is up-to-date

  #80 opened 2 years ago by pburkholder
  0

• Caulking should catch concourse passwords in YAML files

  #78 opened 2 years ago by soutenniza
  3

• It should detect multi-line secrets

  #73 opened 3 years ago by pburkholder
  1

• caulking should fail terraform file that have unobfuscated username

  #72 opened 3 years ago by pburkholder
  0

• caulking should alert on ARNs (AWS Resources)

  #68 opened 3 years ago by pburkholder
  1

• Exclude lockfiles from checks

  #63 opened 3 years ago by davemcorwin
  0

• Generic credentials is triggered too easily

  #62 opened 3 years ago by pburkholder
  0

• Do not flag bash variables for passwords

  #61 opened 3 years ago by pburkholder
  0

• Ignore .png files

  #59 opened 3 years ago by pburkholder
  0

• Pin gitleaks to version 7.6.1 to give us time to update to the 8.x releases (12/21)

  #56 opened 3 years ago by ccostino
  8

• Only check files to be committed

  #41 opened 3 years ago by bengerman13
  3

• Use --no-verify instead of config modification.

  #49 opened 3 years ago by adborden
  0

• submodule causes caulking error

  #48 opened 4 years ago by spgreenberg
  0

• .aws fails false positive? (negative?)

  #45 opened 4 years ago by jadudm
  1

• repos have hooks.gitleaks error unclear?

  #44 opened 4 years ago by jadudm
  0

• 'make audit' fails on IPv4 test

  #38 opened 4 years ago by jfredrickson5
  2

• Assure git config `user.email` is @gsa.gov address

  #30 opened 4 years ago by pburkholder
  1

• Ensure $HOME/.aws directory and .*rc, .*profile files are free of AWS access keys

  #31 opened 4 years ago by pburkholder
  1

• Makefile should be self-documenting

  #32 opened 4 years ago by pburkholder
  0

• Spruce up Caulking before the assessors arrive

  #24 opened 5 years ago by pburkholder
  0

• Scan all `cloud-gov` org repositories for historical leaks

  #20 opened 5 years ago by pburkholder
  1

• Assess offerings for 3rd-party GitHub scanning

  #29 opened 5 years ago by pburkholder
  0

• Bug: False positive when leak is in file that's not staged for commit

  #11 opened 5 years ago by tammersaleh
  1

• Remove port detection

  #12 opened 5 years ago by tammersaleh
  1

• Detect AWS keys in absence of `key` earlier in string

  #13 opened 5 years ago by pburkholder
  3

• False positive on svg and package-lock.json files

  #14 opened 5 years ago by apburnes
  1

• Mute false positives in vendor/github.com vendor/gopkg.in

  #15 opened 5 years ago by pburkholder
  1

• Fails with an unconfigured user

  #9 opened 5 years ago by pburkholder
  1

• Bug: false positive with _removing_ a sensitive line

  #7 opened 5 years ago by tammersaleh
  2

• Caulking breaks per-repo git hooks

  #4 opened 5 years ago by tammersaleh
  4

• Relax email matching

  #8 opened 5 years ago by hillaryj
  1