@edcalderon/versioning 1.5.5 → 1.5.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/CHANGELOG.md
CHANGED
|
@@ -1,15 +1,15 @@
|
|
|
1
|
-
## [1.5.
|
|
1
|
+
## [1.5.6](https://github.com/edcalderon/my-second-brain/compare/versioning-v1.5.5...versioning-v1.5.6) (2026-03-23)
|
|
2
2
|
|
|
3
3
|
|
|
4
|
-
### Bug Fixes
|
|
5
4
|
|
|
6
|
-
* **versioning:** guard against blank changelog sections in readme-maintainer ([1570811](https://github.com/edcalderon/my-second-brain/commit/1570811e4890ee4b376bb7fcae4d7ca065c2bde5))
|
|
7
5
|
|
|
8
6
|
|
|
7
|
+
## [1.5.5](https://github.com/edcalderon/my-second-brain/compare/versioning-v1.5.4...versioning-v1.5.5) (2026-03-22)
|
|
9
8
|
|
|
9
|
+
### Bug Fixes
|
|
10
10
|
|
|
11
|
+
* **versioning:** guard against blank changelog sections in readme-maintainer ([1570811](https://github.com/edcalderon/my-second-brain/commit/1570811e4890ee4b376bb7fcae4d7ca065c2bde5))
|
|
11
12
|
|
|
12
|
-
## [1.5.5](https://github.com/edcalderon/my-second-brain/compare/versioning-v1.5.4...versioning-v1.5.5) (2026-03-22)
|
|
13
13
|
|
|
14
14
|
|
|
15
15
|
|
|
@@ -56,7 +56,11 @@ const DEFAULT_PATTERNS = [
|
|
|
56
56
|
/_KEY=0x[0-9a-fA-F]{64}/,
|
|
57
57
|
/cast wallet address 0x[0-9a-fA-F]{64}/,
|
|
58
58
|
// Seed phrases
|
|
59
|
-
/MNEMONIC=.{20,}
|
|
59
|
+
/MNEMONIC=.{20,}/,
|
|
60
|
+
// Generic credential assignment patterns (covers docs and YAML-style KEY: value)
|
|
61
|
+
/\b(?:IMAP|SMTP|EMAIL|MAIL)_(?:PASSWORD|PASS)\b\s*[:=]\s*["']?(?!\[?YOUR_|YOUR_|\[?REDACTED|REDACTED|<)[^\s"'`]{6,}/i,
|
|
62
|
+
/\b[A-Z0-9_]*(?:PASSWORD|PASS|SECRET|TOKEN|API_KEY|PRIVATE_KEY|CLIENT_SECRET)\b\s*[:=]\s*["']?(?!\[?YOUR_|YOUR_|\[?REDACTED|REDACTED|<|example|changeme)[^\s"'`]{8,}/,
|
|
63
|
+
/\b(?:imap|smtp|mail|email)\.(?:password|app_password)\b\s*[:=]\s*["']?(?!\[?your_|<)[^\s"'`]{6,}/i
|
|
60
64
|
];
|
|
61
65
|
// Allowlist patterns that are safe
|
|
62
66
|
const DEFAULT_ALLOWLIST = [
|
|
@@ -69,6 +73,12 @@ const DEFAULT_ALLOWLIST = [
|
|
|
69
73
|
"YOUR_LOCAL_PRIVATE_KEY",
|
|
70
74
|
"YOUR_TESTNET_PRIVATE_KEY",
|
|
71
75
|
"your_private_key_here",
|
|
76
|
+
"[YOUR_IMAP_PASSWORD]",
|
|
77
|
+
"[YOUR_SMTP_PASSWORD]",
|
|
78
|
+
"[configured in Secret Manager]",
|
|
79
|
+
"Secret Manager",
|
|
80
|
+
"versioning check-secrets",
|
|
81
|
+
"check-secrets",
|
|
72
82
|
"secretPatterns", // Regex pattern definitions in code
|
|
73
83
|
"BEGIN PRIVATE KEY", // Regex string matching
|
|
74
84
|
];
|
|
@@ -102,8 +112,8 @@ function checkContentForSecrets(content, patterns, allowlist, filename) {
|
|
|
102
112
|
}
|
|
103
113
|
const extension = {
|
|
104
114
|
name: 'secrets-check',
|
|
105
|
-
description: 'Checks for hardcoded secrets and private keys in staged files',
|
|
106
|
-
version: '1.1.
|
|
115
|
+
description: 'Checks for hardcoded secrets and private keys in staged files, including markdown docs',
|
|
116
|
+
version: '1.1.1',
|
|
107
117
|
register: async (program, config) => {
|
|
108
118
|
// Try to get config from extensionConfig first, fallback to top-level secrets for backcompat
|
|
109
119
|
const extensionConfig = config.extensionConfig?.['secrets-check'];
|