From 02fdec190823be883e65f2014779124e524fb73c Mon Sep 17 00:00:00 2001 From: renovate Date: Sun, 8 Aug 2021 01:04:12 +0000 Subject: [PATCH 1/2] Update dependency truffleHog3 to v3 --- hardening_manifest.yaml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index e0b4e31..3730eea 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -8,7 +8,7 @@ name: "opensource/trufflehog/trufflehog3" # The most specific version should be the first tag and will be shown # on ironbank.dsop.io tags: -- "2.0.7" +- "3.0.0" - "latest" # Build args passed to Dockerfile ARGs @@ -27,7 +27,7 @@ labels: org.opencontainers.image.url: "https://github.com/feeltheajf/trufflehog3" ## Name of the distributing entity, organization or individual org.opencontainers.image.vendor: "opensource" - org.opencontainers.image.version: "2.0.7" + org.opencontainers.image.version: "3.0.0" ## Keywords to help with search (ex. "cicd,gitops,golang") mil.dso.ironbank.image.keywords: "trufflehog3,secrets" ## This value can be "opensource" or "commercial" @@ -37,11 +37,11 @@ labels: # List of resources to make available to the offline build context resources: -- filename: truffleHog3-2.0.7-py2.py3-none-any.whl - url: https://files.pythonhosted.org/packages/2c/42/1e91763d7a18b82c38e685913840782e3ca5a2442b4c1135dfb082f1ca02/truffleHog3-2.0.7-py2.py3-none-any.whl +- filename: trufflehog3-3.0.0-py2.py3-none-any.whl + url: https://files.pythonhosted.org/packages/54/ee/281b58c76e8f574b8fb0dc0ea242d31a0ee055fe2af1a9db4938955f22eb/trufflehog3-3.0.0-py2.py3-none-any.whl validation: type: sha256 - value: 4356ca343c35a39db800f6549d874f61c8c2765f9ed9e63fad6c4605a80a4451 + value: e5fe8cccc90ba8febcc4fff470c35842dce49dbbc31293d7d5505af4d19f2b20 - filename: PyYAML-5.4-cp39-cp39-manylinux1_x86_64.whl url: https://files.pythonhosted.org/packages/43/e8/31007862b01580c507e24b88aeedb71bb81d6125a71c651a26370e6e0648/PyYAML-5.4-cp39-cp39-manylinux1_x86_64.whl validation: -- GitLab From 52e7d65a955fa5b30b38de15401df1d2a2d314f1 Mon Sep 17 00:00:00 2001 From: Adam Martin Date: Mon, 9 Aug 2021 08:51:21 -0400 Subject: [PATCH 2/2] update to 3.0.1 --- hardening_manifest.yaml | 30 ++++++++++++++++++------------ 1 file changed, 18 insertions(+), 12 deletions(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 3730eea..73860c8 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -8,7 +8,7 @@ name: "opensource/trufflehog/trufflehog3" # The most specific version should be the first tag and will be shown # on ironbank.dsop.io tags: -- "3.0.0" +- "3.0.1" - "latest" # Build args passed to Dockerfile ARGs @@ -27,7 +27,7 @@ labels: org.opencontainers.image.url: "https://github.com/feeltheajf/trufflehog3" ## Name of the distributing entity, organization or individual org.opencontainers.image.vendor: "opensource" - org.opencontainers.image.version: "3.0.0" + org.opencontainers.image.version: "3.0.1" ## Keywords to help with search (ex. "cicd,gitops,golang") mil.dso.ironbank.image.keywords: "trufflehog3,secrets" ## This value can be "opensource" or "commercial" @@ -37,16 +37,16 @@ labels: # List of resources to make available to the offline build context resources: -- filename: trufflehog3-3.0.0-py2.py3-none-any.whl - url: https://files.pythonhosted.org/packages/54/ee/281b58c76e8f574b8fb0dc0ea242d31a0ee055fe2af1a9db4938955f22eb/trufflehog3-3.0.0-py2.py3-none-any.whl +- filename: trufflehog3-3.0.1-py2.py3-none-any.whl + url: https://files.pythonhosted.org/packages/21/36/480053ab0f992871ec3fff0fc7ba898236d914cb3dfd52494482151a5e00/trufflehog3-3.0.1-py2.py3-none-any.whl validation: type: sha256 - value: e5fe8cccc90ba8febcc4fff470c35842dce49dbbc31293d7d5505af4d19f2b20 -- filename: PyYAML-5.4-cp39-cp39-manylinux1_x86_64.whl - url: https://files.pythonhosted.org/packages/43/e8/31007862b01580c507e24b88aeedb71bb81d6125a71c651a26370e6e0648/PyYAML-5.4-cp39-cp39-manylinux1_x86_64.whl + value: 5d535cf20699e0541b540aa182897e640cd77810bf397abc03ab97cdaaaed7d6 +- filename: PyYAML-5.4.1-cp39-cp39-manylinux1_x86_64.whl + url: https://files.pythonhosted.org/packages/3d/1f/2a3705efca3b47161ceaaf52970a9d4b81cc84600818686ecd75093a00a5/PyYAML-5.4.1-cp39-cp39-manylinux1_x86_64.whl validation: type: sha256 - value: 02c78d77281d8f8d07a255e57abdbf43b02257f59f50cc6b636937d68efa5dd0 + value: 74c1485f7707cf707a7aef42ef6322b8f97921bd89be2ab6317fd782c2d53183 - filename: smmap-4.0.0-py2.py3-none-any.whl url: https://files.pythonhosted.org/packages/68/ee/d540eb5e5996eb81c26ceffac6ee49041d473bc5125f2aa995cf51ec1cf1/smmap-4.0.0-py2.py3-none-any.whl validation: @@ -62,17 +62,23 @@ resources: validation: type: sha256 value: 6c4cc71933456991da20917998acbe6cf4fb41eeaab7d6d67fbc05ecd4c865b0 -- filename: GitPython-3.1.0-py3-none-any.whl - url: https://files.pythonhosted.org/packages/d3/2f/6a366d56c9b1355b0880be9ea66b166cb3536392638d8d91413ec66305ad/GitPython-3.1.0-py3-none-any.whl +- filename: GitPython-3.1.18-py3-none-any.whl + url: https://files.pythonhosted.org/packages/bc/91/b38c4fabb6e5092ab23492ded4f318ab7299b19263272b703478038c0fbc/GitPython-3.1.18-py3-none-any.whl validation: type: sha256 - value: 43da89427bdf18bf07f1164c6d415750693b4d50e28fc9b68de706245147b9dd + value: fce760879cd2aebd2991b3542876dc5c4a909b30c9d69dfc488e504a8db37ee8 - filename: Jinja2-3.0.1-py3-none-any.whl url: https://files.pythonhosted.org/packages/80/21/ae597efc7ed8caaa43fb35062288baaf99a7d43ff0cf66452ddf47604ee6/Jinja2-3.0.1-py3-none-any.whl validation: type: sha256 value: 1f06f2da51e7b56b8f238affdd6b4e2c61e39598a378cc49345bc1bd42a978a4 - +- filename: attrs-20.3.0-py2.py3-none-any.whl + url: https://files.pythonhosted.org/packages/c3/aa/cb45262569fcc047bf070b5de61813724d6726db83259222cd7b4c79821a/attrs-20.3.0-py2.py3-none-any.whl + validation: + type: sha256 + value: 31b2eced602aa8423c2aea9c76a724617ed67cf9513173fd3a4f03e3a929c7e6 + + # List of project maintainers maintainers: - email: "adam.martin@rancherfederal.com" -- GitLab