feat(github-release): update pre-commit hook zricethezav/gitleaks to v8.18.4

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
zricethezav/gitleaks	repository	minor	v8.17.0 -> v8.18.4

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

---

Release Notes

zricethezav/gitleaks (zricethezav/gitleaks)

v8.18.4

Compare Source

Changelog

• 02808f4 Limit hashicorp-tf-password to .tf/.hcl files (#​1420)
• 07e1c30 rm print
• db63fc1 reduce telegram... todo url and xml for later
• 9a4538c coderabbit.ai <3
• fe94ef9 Add NewRelic insert key detection (#​1417)
• bb4424d Improved Telegram bot token rule regex and added more test cases (#​1404)
• 575e923 Add intra42 client secret (#​1408)

Shout out to @​coderabbit for their sponsorship!

v8.18.3

Compare Source

Changelog

• 39947b0 extend FB access token discovery (#​1407)
• 79cac73 tests: scalingo validation consistent test (#​1359)
• 247f423 add real (test) standard and restricted keys (#​1375)
• 821b232 Add Cloudflare API and Origin CA keys (#​1374)
• 57ac4b3 Update "contributing guidelines" link (#​1390)
• db69e82 add update token from square (#​1370)
• 4b54328 feat: facebook secret, access token, and page access token rules (#​1372)
• 979f213 update mailchimp with new tokens (#​1376)
• 59c0cc7 Append ordered rules when extending (#​1304)
• 6c52f87 fix: age rule id with dashes (#​1349)
• 247a5e7 patching golang.org/x/text for CVE-2021-38561 and CVE-2022-32149 (#​1342)
• 8d23afd Use latest base images. (#​1334)

v8.18.2

Compare Source

Changelog

• ac4b514 removed gitleaks user from Dockerfile (#​1313)
• 76c9e31 Remove IAM identifiers for non-credential resources in the aws-access-token rule (#​1307)
• afe046b Update stripe rule to not alert on publishable keys (#​1320)
• 8b8920d --max-target-megabytes flag now supported for --no-git flag as well (#​1330)
• a59289c add pre-commit hook gitleaks-system (#​1225)
• 870194b fix errors when using protect and an external git diff tool (#​1318)
• 179c607 rename filesystem to directory (#​1317)
• 8de8938 Enhance Secret Descriptions (#​1300)
• ca7aa14 Small refactor detect and sources (#​1297)
• 01e60c8 chore(config): refactor to go generate; simplify configRules init (#​1295)
• 54f5f04 forgot symlinks
• 221d5c4 pretty apparent 'protect' and 'detect' should be merged into one command (#​1294)
• 128b50f style: sort the stopwords (#​1289)

v8.18.1

Compare Source

Changelog

• dab7d02 dont crash on 100gb files pls (#​1292)
• e63b657 remove secretgroup from default config (#​1288)
• 20fcf50 feat: Hashicorp Terraform fields for password (#​1237)
• b496677 perf: avoid allocations with (*regexp.Regexp).MatchString (#​1283)
• a3ab4e8 refactor: more explicit rules (#​1280)
• bd9a25a bugfix: reduce false positives for stripe tokens by using word boundaries in regex (#​1278)
• 6d0d8b5 add Infracost API rule (#​1273)
• 2959fc0 refactor: simplify test asserts (#​1271)
• d37b38f Update Makefile
• 14b1ca9 refactor: change detect tests to t.Fatal instead of log.Fatal (#​1270)
• d9f86d6 feat(rules): Add detection for Scalingo API Token (#​1262)
• ed34259 feat(jwt): detect base64-encoded tokens (#​1256)
• 0d5e46f feat: add --ignore-gitleaks-allow cmd flag (#​1260)
• a82ac29 switch out libs (#​1259)
• 0b84afa fix: no-color option should also affect zerolog output (#​1242)
• 8976539 Fixed lineEnd indexing if the match is the whole line (#​1223)
• 30c6117 feat: Add optional redaction value, default 100 (#​1229)
• e9135cf fix(jwt): longer segment lengths (#​1214)
• f65f915 Added yarn.lock file to default allowlist paths (#​1258)
• abfd0f3 Update README.md
• 18283bb feat(rules): make case insensitivity optional (#​1215)
• 9fb36b2 feat(rules): detect Hugging Face access tokens (#​1204)
• db4bc0f Resolve #​1170 - Enable selection of a single rule (#​1183)
• 3cbcda2 Update authress.go to include alternate form account dash (-) (#​1224)
• 46c6272 refactor: remove unnecessary removing temp files in tests (#​1255)
• 963a697 refactor: use os.ReadFile instead of os.Open + io.ReadAll (#​1254)
• 163ec21 fix(sumologic): improve patterns (#​1218)

v8.18.0

Compare Source

What's Changed

• Fix inconsistent generated values in config by @​rgmz in https://github.com/gitleaks/gitleaks/pull/1200
• feat: add JFrog API and Identity keys by @​baruchiro in https://github.com/gitleaks/gitleaks/pull/1233
• Add entropy check to plaid client/secret ID rules by @​mortenson in https://github.com/gitleaks/gitleaks/pull/1213
• Update config template logic by @​rgmz in https://github.com/gitleaks/gitleaks/pull/1201
• Include entropy in Plaid rule file by @​rgmz in https://github.com/gitleaks/gitleaks/pull/1252
• refactor: fix #​722 properly by @​L11R in https://github.com/gitleaks/gitleaks/pull/1250

New Contributors

• @​baruchiro made their first contribution in https://github.com/gitleaks/gitleaks/pull/1233
• @​mortenson made their first contribution in https://github.com/gitleaks/gitleaks/pull/1213
• @​L11R made their first contribution in https://github.com/gitleaks/gitleaks/pull/1250

Full Changelog: gitleaks/gitleaks@v8.17.0...v8.18.0

---

Configuration

📅 Schedule: Branch creation - "on saturday" in timezone Europe/Paris, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.