github mongodb/kingfisher v1.62.0
Kingfisher v1.62.0
on GitHub

7 hours ago

[v1.62.0]

  • Added pattern_requirements checks to rules, providing lightweight post-regex character-class validation without lookarounds. See docs/RULES.md for detail
  • Added an ignore_if_contains option to pattern_requirements to drop matches containing case-insensitive placeholder words, with tests covering the new behavior.
  • Updated rules to adopt the new pattern_requirements support.
  • Added checksum comparisons to pattern_requirements, new suffix, crc32, and base62 Liquid filters, and verbose logging so mismatched checksums are skipped with context rather than reported as findings.
  • Split GitHub token detections into fine-grained/fixed-format variants and enforce checksum validation for modern GitHub token families (PAT, OAuth, App, refresh) while preserving legacy coverage.
  • Added a rule for Zuplo tokens.
  • Added checksum calculation for Confluent, GitHub, and Zuplo tokens, which can drastically reduce false positive reports.
  • Improved OpsGenie validation.
  • Automatically enable --no-dedup when --manage-baseline is supplied so baseline management keeps every finding.
  • This release is focused on further improving detection accuracy, before even attempting to validate findings.
  • Updated GitHub Actions CI for Windows and buildwin.bat script
Check out latest releases or
releases around mongodb/kingfisher v1.62.0

Don't miss a new kingfisher release

NewReleases is sending notifications on new releases.

Get notifications