Commit graph

160 commits

Author SHA1 Message Date
a1412ed697 ---
steps:
  gitleaks:
    image: 
zricethezav/gitleaks:v8.18.1@sha256:6945c62ca019ead32bc337ab0c9fd055e98d82961765d38b7ccccc84dae95d0f
    commands:
      - gitleaks detect --no-git --verbose --source $CI_WORKSPACE
    when:
      event:
        exclude:
          - tag

  hadolint:
    image: 
pipelinecomponents/hadolint:0.26.0@sha256:7122937006c7a9bcbb78ce764d3c2f0092f183b843ad128bc9fd6ea918e22d5b
    commands:
      - hadolint Dockerfile
    when:
      event:
        exclude:
          - tag

  shellcheck:
    image: registry.mgrote.net/allzweckcontainer
    commands:
      - |
        find . -type f -not -path './.git/*' -not -path 
'./collections/*' -exec file {} \; | while IFS= read -r line; do
          if echo "$line" | grep -q "shell script"; then
            file_path=$(echo "$line" | awk -F':' '{print $1}')
            shellcheck "$file_path"
          fi
        done
    when:
      event:
        exclude:
          - tag
...
2024-01-29 12:24:31 +01:00
1a149f7417 chore(deps): update alpine:3 docker digest to c5b1261 (#13)
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| alpine | final | digest | `51b6726` -> `c5b1261` |

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNTIuMSIsInVwZGF0ZWRJblZlciI6IjM3LjE1Mi4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->

Reviewed-on: #13
Co-authored-by: Renovate Bot <renovate@mgrote.net>
Co-committed-by: Renovate Bot <renovate@mgrote.net>
2024-01-27 08:47:47 +01:00
fbb55a9a28 chore(deps): update pipelinecomponents/hadolint docker tag to v0.26.0 (#5)
This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [pipelinecomponents/hadolint](https://gitlab.com/pipeline-components/hadolint) | minor | `0.25.9` -> `0.26.0` |

---

### Release Notes

<details>
<summary>pipeline-components/hadolint (pipelinecomponents/hadolint)</summary>

### [`v0.26.0`](https://gitlab.com/pipeline-components/hadolint/compare/v0.25.9...v0.26.0)

[Compare Source](https://gitlab.com/pipeline-components/hadolint/compare/v0.25.9...v0.26.0)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNTIuMSIsInVwZGF0ZWRJblZlciI6IjM3LjE1Mi4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->

Reviewed-on: #5
Co-authored-by: Renovate Bot <renovate@mgrote.net>
Co-committed-by: Renovate Bot <renovate@mgrote.net>
2024-01-26 23:59:21 +01:00
b430b8f2fc remove unused files 2024-01-26 23:57:25 +01:00
e2e286b1eb chore(deps): pin dependencies (#2)
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| alpine | final | pinDigest |  -> `51b6726` |
| juanluisbaptiste/postfix |  | pinDigest |  -> `4f770a2` |
| koalaman/shellcheck-alpine |  | pinDigest |  -> `f73b035` |
| [pipelinecomponents/hadolint](https://gitlab.com/pipeline-components/hadolint) |  | pinDigest |  -> `430e949` |
| plugins/docker |  | pinDigest |  -> `2f15740` |

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNTIuMSIsInVwZGF0ZWRJblZlciI6IjM3LjE1Mi4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->

Reviewed-on: #2
Co-authored-by: Renovate Bot <renovate@mgrote.net>
Co-committed-by: Renovate Bot <renovate@mgrote.net>
2024-01-26 23:52:01 +01:00
7bba102c51 chore(deps): update zricethezav/gitleaks docker tag to v8.18.1 (#3)
This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [zricethezav/gitleaks](https://github.com/gitleaks/gitleaks) | patch | `v8.18.0` -> `v8.18.1` |

---

### Release Notes

<details>
<summary>gitleaks/gitleaks (zricethezav/gitleaks)</summary>

### [`v8.18.1`](https://github.com/gitleaks/gitleaks/releases/tag/v8.18.1)

[Compare Source](https://github.com/gitleaks/gitleaks/compare/v8.18.0...v8.18.1)

#### Changelog

-   [`dab7d02`](https://github.com/gitleaks/gitleaks/commit/dab7d02) dont crash on 100gb files pls ([#&#8203;1292](https://github.com/gitleaks/gitleaks/issues/1292))
-   [`e63b657`](https://github.com/gitleaks/gitleaks/commit/e63b657) remove secretgroup from default config ([#&#8203;1288](https://github.com/gitleaks/gitleaks/issues/1288))
-   [`20fcf50`](https://github.com/gitleaks/gitleaks/commit/20fcf50) feat: Hashicorp Terraform fields for password ([#&#8203;1237](https://github.com/gitleaks/gitleaks/issues/1237))
-   [`b496677`](https://github.com/gitleaks/gitleaks/commit/b496677) perf: avoid allocations with `(*regexp.Regexp).MatchString` ([#&#8203;1283](https://github.com/gitleaks/gitleaks/issues/1283))
-   [`a3ab4e8`](https://github.com/gitleaks/gitleaks/commit/a3ab4e8) refactor: more explicit rules ([#&#8203;1280](https://github.com/gitleaks/gitleaks/issues/1280))
-   [`bd9a25a`](https://github.com/gitleaks/gitleaks/commit/bd9a25a) bugfix: reduce false positives for stripe tokens by using word boundaries in regex ([#&#8203;1278](https://github.com/gitleaks/gitleaks/issues/1278))
-   [`6d0d8b5`](https://github.com/gitleaks/gitleaks/commit/6d0d8b5) add Infracost API rule ([#&#8203;1273](https://github.com/gitleaks/gitleaks/issues/1273))
-   [`2959fc0`](https://github.com/gitleaks/gitleaks/commit/2959fc0) refactor: simplify test asserts ([#&#8203;1271](https://github.com/gitleaks/gitleaks/issues/1271))
-   [`d37b38f`](https://github.com/gitleaks/gitleaks/commit/d37b38f) Update Makefile
-   [`14b1ca9`](https://github.com/gitleaks/gitleaks/commit/14b1ca9) refactor: change detect tests to t.Fatal instead of log.Fatal ([#&#8203;1270](https://github.com/gitleaks/gitleaks/issues/1270))
-   [`d9f86d6`](https://github.com/gitleaks/gitleaks/commit/d9f86d6) feat(rules): Add detection for Scalingo API Token ([#&#8203;1262](https://github.com/gitleaks/gitleaks/issues/1262))
-   [`ed34259`](https://github.com/gitleaks/gitleaks/commit/ed34259) feat(jwt): detect base64-encoded tokens ([#&#8203;1256](https://github.com/gitleaks/gitleaks/issues/1256))
-   [`0d5e46f`](https://github.com/gitleaks/gitleaks/commit/0d5e46f) feat: add --ignore-gitleaks-allow cmd flag ([#&#8203;1260](https://github.com/gitleaks/gitleaks/issues/1260))
-   [`a82ac29`](https://github.com/gitleaks/gitleaks/commit/a82ac29) switch out libs ([#&#8203;1259](https://github.com/gitleaks/gitleaks/issues/1259))
-   [`0b84afa`](https://github.com/gitleaks/gitleaks/commit/0b84afa) fix: no-color option should also affect zerolog output ([#&#8203;1242](https://github.com/gitleaks/gitleaks/issues/1242))
-   [`8976539`](https://github.com/gitleaks/gitleaks/commit/8976539) Fixed lineEnd indexing if the match is the whole line ([#&#8203;1223](https://github.com/gitleaks/gitleaks/issues/1223))
-   [`30c6117`](https://github.com/gitleaks/gitleaks/commit/30c6117) feat: Add optional redaction value, default 100 ([#&#8203;1229](https://github.com/gitleaks/gitleaks/issues/1229))
-   [`e9135cf`](https://github.com/gitleaks/gitleaks/commit/e9135cf) fix(jwt): longer segment lengths ([#&#8203;1214](https://github.com/gitleaks/gitleaks/issues/1214))
-   [`f65f915`](https://github.com/gitleaks/gitleaks/commit/f65f915) Added yarn.lock file to default allowlist paths ([#&#8203;1258](https://github.com/gitleaks/gitleaks/issues/1258))
-   [`abfd0f3`](https://github.com/gitleaks/gitleaks/commit/abfd0f3) Update README.md
-   [`18283bb`](https://github.com/gitleaks/gitleaks/commit/18283bb) feat(rules): make case insensitivity optional ([#&#8203;1215](https://github.com/gitleaks/gitleaks/issues/1215))
-   [`9fb36b2`](https://github.com/gitleaks/gitleaks/commit/9fb36b2) feat(rules): detect Hugging Face access tokens ([#&#8203;1204](https://github.com/gitleaks/gitleaks/issues/1204))
-   [`db4bc0f`](https://github.com/gitleaks/gitleaks/commit/db4bc0f) Resolve [#&#8203;1170](https://github.com/gitleaks/gitleaks/issues/1170) - Enable selection of a single rule  ([#&#8203;1183](https://github.com/gitleaks/gitleaks/issues/1183))
-   [`3cbcda2`](https://github.com/gitleaks/gitleaks/commit/3cbcda2) Update authress.go to include alternate form account dash (-) ([#&#8203;1224](https://github.com/gitleaks/gitleaks/issues/1224))
-   [`46c6272`](https://github.com/gitleaks/gitleaks/commit/46c6272) refactor: remove unnecessary removing temp files in tests ([#&#8203;1255](https://github.com/gitleaks/gitleaks/issues/1255))
-   [`963a697`](https://github.com/gitleaks/gitleaks/commit/963a697) refactor: use os.ReadFile instead of os.Open + io.ReadAll ([#&#8203;1254](https://github.com/gitleaks/gitleaks/issues/1254))
-   [`163ec21`](https://github.com/gitleaks/gitleaks/commit/163ec21) fix(sumologic): improve patterns ([#&#8203;1218](https://github.com/gitleaks/gitleaks/issues/1218))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNTIuMSIsInVwZGF0ZWRJblZlciI6IjM3LjE1Mi4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->

Reviewed-on: #3
Co-authored-by: Renovate Bot <renovate@mgrote.net>
Co-committed-by: Renovate Bot <renovate@mgrote.net>
2024-01-26 23:49:17 +01:00
mg
6d0e41fe3d Merge pull request 'chore: Configure Renovate' (#1) from renovate/configure into master
Reviewed-on: #1
2024-01-26 23:43:02 +01:00
8fd8bc0256 Add renovate.json 2024-01-26 22:40:54 +00:00
43fd91155f ci: set image for hadolint 2024-01-26 23:28:12 +01:00
e6f33411ae ci: set tag for gitleaks 2024-01-26 22:51:23 +01:00
077d3a0ab0 ci: fix woodpecker warnings 2024-01-24 20:00:58 +01:00
2db0a499be test 2023-11-19 22:38:39 +01:00
52efa3ec61 ci: fix linter errors 2023-11-09 15:36:46 +01:00
5dc74aadda ci: fix linter errors 2023-11-09 15:35:14 +01:00
5f4995e65a ci: fix linter errors 2023-11-09 15:34:41 +01:00
07d63f74d3 ci: fix linter errors 2023-11-09 15:33:26 +01:00
6daa5ebb9f ci: enable shellcheck 2023-11-09 09:22:41 +01:00
b84b0ad86c FROM alpine:3 2023-11-08 16:27:20 +01:00
8012563890 add badge 2023-11-08 13:24:43 +01:00
82f18b76ad ci: disable shellcheck 2023-11-06 08:06:32 +01:00
84fd00481f ci: add shellcheck 2023-11-03 19:32:03 +01:00
6a568cff66 ci: remove drone 2023-11-03 19:21:55 +01:00
40d51a6f1b drone -> woodpecker 2023-11-03 19:21:11 +01:00
0dc508f592 docs 2023-11-03 11:39:21 +01:00
d4ece33bce remove: OVERWRITE_FROM 2023-11-03 11:36:22 +01:00
14aac69ece add package: postfix-pcre 2023-11-03 11:30:43 +01:00
bedcf8ab7d SMTP_GENERIC_MAP 2023-11-03 11:28:21 +01:00
ab7db6a3b2 remove inet_interfaces 2023-11-03 11:23:23 +01:00
183167d33e set append_dot_domain 2023-10-31 10:30:45 +01:00
eeb6be696b make inet_protocol configurable 2023-10-31 10:25:38 +01:00
4723a4336f set inet_protocol to ipv4 2023-10-31 10:21:23 +01:00
8c6dfdaf65 typo 2023-10-31 00:00:27 +01:00
09f306c193 ci: fix linter errors 2023-10-30 23:59:52 +01:00
9e49aeb2ef ci: fix linter errors 2023-10-30 23:58:51 +01:00
6315f58f38 ci: enable hadolint 2023-10-30 23:56:56 +01:00
8a2377baf0 update base image 2023-10-30 23:53:35 +01:00
917577a2e9 ci: exclude hadolint 2023-10-30 23:52:26 +01:00
9b1f4312cc ci: add drone 2023-10-30 23:51:28 +01:00
snyk-bot
7a958d4382 fix: Dockerfile to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE315-OPENSSL-5788364
- https://snyk.io/vuln/SNYK-ALPINE315-OPENSSL-5788364
2023-08-10 21:36:45 -05:00
Tsuyoshi Yamasaki
193a9292ad fix: Update some actions to run on Node 16 instead of Node 12. 2023-03-16 12:32:54 -05:00
Tsuyoshi Yamasaki
5990535987 fix: Update some actions to run on Node 16 instead of Node 12. 2023-03-16 12:32:54 -05:00
snyk-bot
98e6ef216a fix: Update Dockerfile base image to alpine 3.15
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE313-OPENSSL-2941811
- https://snyk.io/vuln/SNYK-ALPINE313-OPENSSL-2941811
2022-07-07 21:10:07 -05:00
Joost van den Broek
5ba18a151e feat: Add IPv6 support 2022-06-29 18:58:42 -05:00
Nasser
ceab4779d9
feat: Add message_size_limit option (#86)
* feat: Add MESSAGE_SIZE_LIMIT configuration option (PR #86)
2022-06-20 16:38:09 -05:00
Juan Luis Baptiste
1426f26546 Fix fix: tag doc in PR tempalte. 2022-05-13 10:06:21 -05:00
Juan Luis Baptiste
7d8086dd01 Add usage comments to bug and PR templates
to tell users to remove unncesary parts before submitting.
2022-05-13 10:05:01 -05:00
Andrey Andreev
7a9b9513a7 fix: read passwords from files 2022-05-13 09:22:27 -05:00
Nico Weichbrodt
a80ceca118 feat: Allow disabling SMTPUTF8 2022-04-20 22:59:41 -05:00
linucksrox
f280c00f87 feat: Add ENV option to enable subject line logging 2022-04-04 16:40:35 -05:00
nick
f831f935b9 Correct sasl_passwd file creation method 2021-07-08 21:23:43 -05:00