winget install --id Gitleaks.GitleaksAbout Gitleaks
Gitleaks is a SAST tool for detecting and preventing hardcoded secrets like passwords, api keys, and tokens in git repos. Gitleaks is an easy-to-use, all-in-one solution for detecting secrets, past or present, in your code.
What's new in 8.30.1
Changelog - 83d9cd6 update goreleaser - 8d1f98c Removed unnecessary functions from report template (#2040) - ca20267 its the simple things (#2020) - b66ac75 build: switch to Go 1.24 (#2002)
Version history
| Version | Updated | Notes |
|---|---|---|
| 8.30.1 | Unknown | Changelog - 83d9cd6 update goreleaser - 8d1f98c Removed unnecessary functions from report template (#2040) - ca20267 its the simple things (#2020) - b66ac75 build: switch to Go 1.24 (#2002) |
| 8.30.0 | Unknown | Changelog - 6eaad03 0 to 5 - notes on recursive decoding (#1994) - 09242ce Add new Looker client ID and client secret rules (#1947) - c98e5e0 feat: add Airtable Personnal Access Token detection (#1952) - 4ed0ca4 build: u... |
| 8.29.1 | Unknown | Changelog - fb5d707 thats a paddlin - 50493db feat: document stdout report path (#1990) |
| 8.29.0 | Unknown | Changelog - ed65b65 Add trace log for skipped archive file when not enabled (#1961) - c5ccbb9 Respect contexts with timeouts (#1948) - 3821f30 Config min version (#1955) - d223718 fix(config): validate rules when [extend... |
| 8.28.0 | Unknown | Changelog - 4fb4382 cant count - b1c9c7e Composite rules (#1905) - 72977e4 feat: add Anthropic API key detection (#1910) - 7b02c98 fix(git): handle port (#1912) - 2a7bcff dont prematurely calculate fragment newlines (#19... |
| 8.27.2 | Unknown | Changelog - c7acf33 Merge branch 'master' of github.com:gitleaks/gitleaks - 9faaa4a Add experimental allowlist optimizations (#1731) - 79068b3 Detect Notion Public API Keys #1889 (#1890) |
| 8.27.1 | Unknown | Changelog - 80468ef Merge branch 'master' of github.com:gitleaks/gitleaks - ef82237 fix(atlassian): reduce false-positives for v1 pattern (#1892) - 2463f11 Fix log suppresion issue (#1887) - 6f251ee Added Heroku API Key... |
| 8.27.0 | Unknown | Changelog - 782f310 Archive support (#1872) - 489d13c Update README.md - d29ee55 Reduce aws-access-token false positives (#1876) - 611db65 Set pass_filenames to false for Docker hook (#1850) - 0589ae0 unicode decoding (#... |
| 8.26.0 | Unknown | Changelog - 78eebac Percent/URL Decoding Support (#1831) - 6f967ca fix(kubernetes): remove slow element from pat (#1848) - 88f56d3 feat: identify slow file (#1479) - 9609928 rm 1password detect test since we test it in c... |
| 8.25.1 | Unknown | Changelog - d1c7759 fix(detect): test all allowlists (#1845) Big thanks @rgmz |
| 8.24.3 | Unknown | Changelog - 107a418 Add support for GitLab Runner Tokens (Routable) (#1820) - 7fac002 bump repo version in pre-commit example (#1815) - 4b54104 Fix currentLine out of bounds error (#1810) - af7d5bc add support for Azure... |
| 8.24.2 | Unknown | What's Changed - Fix platform flag being ignored with gitleaks detect by @rgmz in #1765 - Make AddFinding public by @bplaxco in #1767 - FIX upgrade x/crypto to 0.31.0 to get rid of CVE-2024-45337 by @cgoessen in #1768 -... |
| 8.24.0 | Unknown | Changelog - c2afd56 Make paths and fingerprints platform-agnostic (#1622) - 818e32f Add Sonar rule (#1756) - 3fa5a3a Minor false positive improvements (#1758) - 2020e6a Add support for streaming DetectReader (#1760) - 91... |
| 8.23.3 | Unknown | Changelog - 3188ad6 Don't exit with error if git repacking is required (#1711) - 7fc11bb refactor(config): use non-capture groups for allowlists (#1735) - 36c52c6 chore: Enhance curl-auth-user to detect empty usernames o... |
| 8.23.2 | Unknown | Changelog - d88bc09 facebook keyword - 3fdaefd fix(meraki): restrict keyword case (#1722) - f3ae52e feat(generic-api-key): detect base64 (#1598) - d6a828a great branch name (#1721) - d2ffffe fix(git): remove .git suffix... |
| 8.23.1 | Unknown | Changelog - 7bad9f7 chore(gcp): add firebase example keys to the gcp-api-key allowlists (#1635) - 977236c fix: unaligned 64-bit atomic operation panic (#1696) - a211b16 force push to master everyday - 0e5f644 feat(config... |
| 8.23.0 | Unknown | Changelog - db8e5e6 feat(generate): use multiple allowlists (#1691) - 973c794 chore(rules): include fps in reference (#1471) - f0d4499 Add comma as operator for GenerateSemiGenericRegex (#1679) - ab38a46 refactor: centra... |
| 8.22.1 | Unknown | Changelog - b69b515 Entropy trace (#1659) - 7357adc build: add 'toolchain' to go.mod (#1682) - 4c3da6e refactor(detect): create readUntilSafeBoundary + add tests (#1676) - dbe3746 twitter really does suck ass now - 7edfc... |
| 8.22.0 | Unknown | Changelog - a91c671 replace std library regex engine with go-re2 (#1669) This bumps the gitleaks binary size from around 8.5MB to 15MB but yields 2-4x speedup. Worth it imo. If you feel strongly against this change feel... |
| 8.21.4 | Unknown | Changelog - 906085f Update golang version to 1.23 (#1672) - 8a83062 log bytes (#1670) |