05 Jan 00:26

actions-helper

f70429f

v0.19.0

v0.19.0 (2024-01-05)

Chore

chore: Improve terminal output (#335)

Implementing the following changes:

Add debug log level (colored cyan)
Make error messages print to stderr instead of stdout
include "[seCureLI] [<log level>] " prefix to messages
Update default log level from ERROR to WARN
Move log level enum to separate class and use more consistently (a986da5)

chore: Issue 320 - remove six from exclude list (#323)

closes #320

Co-authored-by: Caleb Tonn <[email protected]> (57aea2d)

Feature

feat: Periodically check for hook updates on scan (#336)

Description

This PR adds the feature to check for updates to hooks when running a
scan. Since the update check doesn't need to be done on every scan, we
only check at most once per week. This will prevent the added latency of
calling out to GitHub (or wherever hooks are hosted) on every scan.

pre-commit does not expose the functionality
of checking for hook updates without actually performing the update, so
for now this PR imports functions directly from the pre-commit tool
(since it is also written in python).
This is not a best practice, but is probably the cleanest option we have
for now. We can look into implementing this functionality in
pre-commit itself in the future.

Note that there is currently no way to specify whether to include the
--bleeding-edge flag (implemented internally with a tags_only
boolean). The implication is that if someone updates their version of a
hook repository beyond the latest release, we will detect it as being
out-of-date, instead of ahead. In practice, this feels like a day-2 kind
of feature that won't be important to many users.

This PR closes #176 .

Feature Work

Updates internal .pre-commit-config.yaml file to add hooks. Not sure
why this repo did not have defined hooks previously?
Updates internal secureli config file to set the log level to DEBUG
(we should see all output while developing secureli)
Instead of deserializing the .pre-commit-config.yaml file to a
dictionary, this adds a proper pydantic model

Cleanup work

Unrelated to the ticket, I also performed some fixes/cleanup:

Fixed bug in existing unit test causing .pre-commit-config.yaml to
get overwritten
Cleaned up errors in type hints across numerous files
Cleaned up some comments & output for clarity/correctness
Minor cleanup refactoring
Fixed an error from pytest warning of use of the deprecated package
pkg_resources (by using the recommended alternative)
Rename test function with duplicate name
Remove duplicate test fixture (9839881)

Assets 4

14 Nov 18:36

actions-helper

v0.18.0

674cfd1

v0.18.0

v0.18.0 (2023-11-14)

Feature

feat: 154 Prompt User to Install Code Linters for each Detected Language (#332)

closes #154

Overview

Adds functionality to prompt the user to determine if linter based
pre-commit hooks should be added to the code repository. The user will
be prompted for each detected language during init.

An example messages will be Add lint pre-commit(s) for JavaScript? [Y/n]

adding the --yes option will bypass the prompting to install linter
pre-commit hooks and will automatically add them.

Technical Approach

This pr includes reorganizing the pre-commit templates into a new
folder/file structure. Templates will be located under
resources/pre-commit and will be split into separate folders and files
based on if they are linter hooks or not. The user responses and code
will determine whether or not the hooks should be combined and saved to
the user's repository. Splitting these files out ensures a simple way of
knowing which hooks are linters.

Testing

run secureli init
follow flow to add/ignore linters for each detected language
Verify pre-commit linters are added or not added to pre-commit.yaml
depending on prompt response

Regression testing:
Testing scan and update to ensure both are working as normal. (c63860f)

Assets 4

10 Nov 17:59

actions-helper

v0.17.1

5cda63c

v0.17.1

v0.17.1 (2023-11-10)

Fix

fix: Correctly parsing %-encoded URLs from .git/config file (#331)

Resolves #261

The configparser module by default assumes that '%' characters
indicate the presence of a variable and will try to parse a config value
accordingly. Switching to "raw" mode prevents this behavior.

Testing

Manually tested by changing my .git/config file to set the origin URL
to include %20, and was able to replicate the failure detailed in the
ticket. (af842fb)

Assets 4

02 Nov 18:14

actions-helper

v0.17.0

6498f95

v0.17.0

v0.17.0 (2023-11-02)

Chore

chore: Issue 159 - Using latest git hooks (#322)

#159

Pre-commit does not support using a latest
tag,
the only way to use latest is to update after install.

I tested these changes by updating the version I installed with brew
re-initializing a test repo with javascript and python code. It looks
like the fix I made to the update command could use a regression test,
that line of code cannot run without a folder path argument.

Co-authored-by: Rob Rodriguez <[email protected]> (4b77d27)

Feature

feat: add version option functionality (#330)

closes #170

Adds option to display the current seCureLI version in the terminal
using either -v or --version (285864d)

Assets 4

11 Oct 23:05

actions-helper

v0.16.0

ded2969

v0.16.0

v0.16.0 (2023-10-11)

Chore

chore: Reverting python from 3.11 to 3.9 (#319)

#318

Co-authored-by: Rob Rodriguez <[email protected]> (b8ce59c)

chore: Secureli 265 python311 support (#317)

This is to resolve issues with publishing after changing secureli to
support python3.11

Co-authored-by: Rob Rodriguez <[email protected]>
Co-authored-by: Rob Rodriguez <[email protected]> (c9808a2)

chore: pip: Bump poethepoet from 0.23.0 to 0.24.1 (#310)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits
that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after
your CI passes on it
@dependabot cancel merge will cancel a previously requested merge
and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all
of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (ecfac07)

Feature

feat: Added Python 3.11 support (#316)

Resolving string representation of enum for EchoLevel
Edited TOML file

Co-authored-by: Rob Rodriguez <[email protected]>
Co-authored-by: Rob Rodriguez <[email protected]> (f31d19f)

Assets 4

10 Oct 20:09

actions-helper

v0.15.0

c1fafe4

v0.15.0

v0.15.0 (2023-10-10)

Feature

feat: Updates documentation and creates a new release artifact (#314) (06c3c36)

Assets 4

23 Aug 16:41

actions-helper

v0.14.0

fdad87b

v0.14.0

v0.14.0 (2023-08-23)

Feature

feat: use python 3.9 in pypi publish job (#281) (0269290)

Assets 4

21 Aug 16:37

actions-helper

v0.13.0

af355d0

v0.13.0

v0.13.0 (2023-08-21)

Chore

chore: secure tokens (#276)

Resolves #275 (896bf6f)

chore: replaces all PAT uses with GH App token (#273)

Resolves #185 (39bf02c)

Feature

feat: (144) Add Directory Support -d --directory (#279)

#144

Example commands using the new directory option:

secureli scan --directory /absolute/path/to/a/git/directory
secureli scan -d ./relative/path/to/a/git/directory
secureli init -d ./relative/path/to/a/git/directory
secureli update --directory /absolute/path/to/a/git/directory

Co-authored-by: Adina <[email protected]> (d23f94b)

Assets 4

14 Aug 21:45

actions-helper

v0.12.0

2cf023c

v0.12.0

v0.12.0 (2023-08-14)

Feature

feat: swaps token for semantic release to github app token (secureli-185) (#272) (e10226e)

Assets 4

09 Aug 20:26

sbates

v0.11.0

5ab702b

v0.11.0

v0.11.0 (2023-08-09)

Chore

chore: pip: bump pygments from 2.15.1 to 2.16.1 (#263)

Assets 4

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

v0.19.0 (2024-01-05)

Chore

Feature

Description

Feature Work

Cleanup work

v0.18.0 (2023-11-14)

Feature

v0.17.1 (2023-11-10)

Fix

Testing

v0.17.0 (2023-11-02)

Chore

Feature

v0.16.0 (2023-10-11)

Chore

Feature

v0.15.0 (2023-10-10)

Feature

v0.14.0 (2023-08-23)

Feature

v0.13.0 (2023-08-21)

Chore

Feature

v0.12.0 (2023-08-14)

Feature

v0.11.0 (2023-08-09)

Chore

Releases: slalombuild/secureli

v0.19.0

v0.19.0 (2024-01-05)

Chore

Feature

Description

Feature Work

Cleanup work

v0.18.0

v0.18.0 (2023-11-14)

Feature

v0.17.1

v0.17.1 (2023-11-10)

Fix

Testing

v0.17.0

v0.17.0 (2023-11-02)

Chore

Feature

v0.16.0

v0.16.0 (2023-10-11)

Chore

Feature

v0.15.0

v0.15.0 (2023-10-10)

Feature

v0.14.0

v0.14.0 (2023-08-23)

Feature

v0.13.0

v0.13.0 (2023-08-21)

Chore

Feature

v0.12.0

v0.12.0 (2023-08-14)

Feature

v0.11.0

v0.11.0 (2023-08-09)

Chore